edit-icon download-icon

[Vulnerability notice] Web SQL injection vulnerability in HiShop

Last Updated: Nov 15, 2017

Description

HiShop is a popular website content management system.

However, earlier versions of HiShop are exposed to have less rigorous code which may lead to web SQL injection. Hackers may exploit this vulnerability to start database hijacking or further intrusion into the website.

Fix

Follow the official instructions to upgrade Hishop to the latest version.

Note: To avoid data loss, make a backup before upgrading, or create a hard disk snapshot for ECS.

Thank you! We've received your feedback.