SQL injection vulnerability in the goods_order.class.php page of the B2B2C multi-store system of UQCMS Cloud Commerce (CNVD-2017-37553)
UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. A SQL injection vulnerability exists in the goodsorder.class.php page of the UQCMS Cloud Business B2B2C Multi-Store System due to the program's failure to adequately filter...