SQL injection vulnerability at active order deletion on Tpshop Pr***.php page (CNVD-2019-17505)
Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the deletion of active orders on the Tpshop Pr.php page. Attackers can use the vulnerability to obtain sensitive information in the database...