SQL Injection vulnerability in ECshop 4.x allows an malicious user to obtain sensitive information via the file/article.php component.
Vulnerability verification
CVE-2024-31025 Vulnerability verification