Seabird1992

Name of the Vulnerable Software and Affected Versions: DOYOCMS version 2.3 Description: A SQL injection issue in the admin.php file allows attackers to execute arbitrary SQL commands via the `orders[]` parameter. Recommendations: For DOYOCMS version 2.3, consider restricting access to the admin.php file and the `orders[]` parameter to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.