SQL injection vulnerability in product.html in B2B Gold Script allows remote attackers to execute arbitrary SQL commands via the id parameter.Referenceshttp://www.exploit-db.com/exploits/12460http://packetstormsecurity.org/1004-exploits/b2bgoldscript-sql.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/58265http://www.securityfocus.com/bid/39830http://osvdb.org/64212http://secunia.com/advisories/39710
