2 matches found
SQL Injection Vulnerability in get_total_money_order Method of WKshop General Mall System
WK+shop is a mall system based on the technology of PHP+MySQL, developed using ThinkPHP5.0 framework, which combines the Witcott mission system with multiple mall systems. A SQL injection vulnerability exists in the gettotalmoneyorder method of the WK+shop universal mall system, which allows an...
SQL Injection Vulnerability in Multiple Methods of WKshop General Mall System
WK+shop is a mall system based on the technology of PHP+MySQL, developed using ThinkPHP5.0 framework, which combines the Witcott mission system with multiple mall systems. WK+shop General Mall System has SQL injection vulnerability in several methods, an authenticated attacker can construct a...