Vulnerabilities (CVE)

Filtered by vendor Phpshe Subscribe
Filtered by product Mall System
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-18020 1 Phpshe 1 Mall System 2024-11-21 7.5 HIGH 9.8 CRITICAL
SQL Injection in PHPSHE Mall System v1.7 allows remote attackers to execute arbitrary code by injecting SQL commands into the "user_phone" parameter of a crafted HTTP request to the "admin.php" component.