Built2Go PHP Shopping - SQL Injection
This is a functional SQL injection (SQLi) exploit for Built2Go PHP Shopping version <= 1.7. The PoC demonstrates a UNION-based SQLi via the 'cat' parameter in product.php, leaking database version information.