ECShop SQL Injection Vulnerability (CNVD-2021-44947)
ECShop is a professional e-commerce mall system. A SQL injection vulnerability exists in ECShop version 2.7.6. An attacker can exploit this vulnerability by using the goodsnumber parameter of flow.php to conduct a SQL injection attack...