SQL Injection in PHPSHE Mall System v1.7 allows remote malicious users to execute arbitrary code by injecting SQL commands into the "user_phone" parameter of a crafted HTTP request to the "admin.php" component.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpshe mall system 1.7 |