S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI.Referenceshttps://github.com/QQ704568679/-/blob/master/README.md
