CandyPress eCommerce suite 4.1.1.26 - Multiple Vulnerabilities
WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Title: CandyPress eCommerce suite Vendor: http://www.candypress.com/ Bugs: SQL Injection + XSS + Path Disclosure in CandyPress Vulnerable Version: 4.1.1.26 Exploit: Available Fix Available: Yes!, Update to 4.1.1.27...