狮子鱼Cms · 狮子鱼Cms · CVE-2021-4328
**Name of the Vulnerable Software and Affected Versions**
狮子鱼CMS (affected versions not specified)
**Description**
A critical issue has been found, affecting the `goods detail` function of the `ApiController.class.php` file. The manipulation of the `goods id` argument leads to sql injection. This issue can be exploited remotely.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.