Mall System

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-28	CVE-2020-18020	SQL Injection vulnerability in PHPshe Mall System 1.7 SQL Injection in PHPSHE Mall System v1.7 allows remote attackers to execute arbitrary code by injecting SQL commands into the "user_phone" parameter of a crafted HTTP request to the "admin.php" component. network low complexity phpshe CWE-89	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.