Vulnerabilities > Phpshe > Mall System
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-28 | CVE-2020-18020 | SQL Injection vulnerability in PHPshe Mall System 1.7 SQL Injection in PHPSHE Mall System v1.7 allows remote attackers to execute arbitrary code by injecting SQL commands into the "user_phone" parameter of a crafted HTTP request to the "admin.php" component. | 9.8 |