SQL Injection vulnerability in pay.php in millken doyocms 2.3, allows malicious users to execute arbitrary code, via the attribute parameter.
doyocms project doyocms 2.3