SQL injection vulnerability in index.php in PlainCart 1.1.2 allows remote malicious users to execute arbitrary SQL commands via the p parameter.
plaincart plaincart 1.1.2