Hellos1Ma

**Name of the Vulnerable Software and Affected Versions** PHPSHE version 1.7 **Description** The issue allows for SQL Injection in the `pintuan id` parameter to the `/index.php` endpoint via the `module/index/cart.php` file. **Recommendations** For PHPSHE version 1.7, consider restricting access to the `cart.php` module to minimize the risk of exploitation until a patch is available. Avoid using the `pintuan id` parameter in the affected API endpoint until the issue is resolved.