0.001 Low
EPSS
Percentile
47.8%
SQL Injection in PHPSHE Mall System v1.7 allows remote attackers to execute arbitrary code by injecting SQL commands into the βuser_phoneβ parameter of a crafted HTTP request to the βadmin.phpβ component.
gitee.com/koyshe/phpshe/issues/IQ8S8