SQL injection vulnerability in index.php in PHPShop 0.8.1 allows remote malicious users to execute arbitrary SQL commands via the product_id parameter, as demonstrated by a shop/flypage action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpshop phpshop 0.8.1 |