CVE-2014-10034
CVE-2014-10034 affects couponPHP prior to 1.2.0. The admin area is vulnerable to SQL injection via the iDisplayLength and iDisplayStart parameters in comments_paginate.php and stores_paginate.php under admin/ajax/, enabling remote attackers with valid admin access to manipulate SQL queries. Relat...