4 matches found
SQL injection vulnerability in the bill.class.php page of UQCMS Cloud Business B2B2C Multi-store System
UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS cloud business B2B2C multi-store system bill.class.php page SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...
SQL injection vulnerability in the member.class.php page of UQCMS Cloud Business B2B2C multi-store system (CNVD-2018-04286)
UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. A SQL injection vulnerability exists in UQCMS Cloud Business B2B2C Multi-Store System due to the program failing to adequately filter user-supplied input. An attacker can exploit...
SQL injection vulnerability in UQCMS cloud B2B2C multi-store system caiji.class.php page
UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. A SQL injection vulnerability exists in the caiji.class.php page of the UQCMS Cloud Business B2B2C Multi-Store System due to the program's failure to adequately filter user-suppli...
WSTMart 'addressId' parameter has a design flaw vulnerability in Guangzhou Shangtao Information Technology Co.
WSTMart e-commerce system is based on THINKPHP 5.0 development of B2B2C integrated e-commerce system. There is a design flaw vulnerability in the WSTMart 'addressId' parameter of Guangzhou Shangtao Information Technology Co. Allow attackers to obtain database account password information...