SQL Injection vulnerability in CRMEB_Java e-commerce system v.1.3.4 allows an attacker to execute arbitrary code via the groupid parameter.
https://github.com/JiangXiaoBaiJia/cve2/blob/main/a.png
https://github.com/JiangXiaoBaiJia/cve2/blob/main/1.md