Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-89,
Products Affected