SQL injection vulnerability in product_desc.php in Pre Printing Press allows remote attackers to execute arbitrary SQL commands via the pid parameter.Referenceshttp://www.securityfocus.com/bid/52551https://exchange.xforce.ibmcloud.com/vulnerabilities/74125http://www.osvdb.org/80191http://www.exploit-db.com/exploits/18616http://secunia.com/advisories/48443https://exchange.xforce.ibmcloud.com/vulnerabilities/74122
