ShopSystems versions 4.0 and below suffer from a SQL injection vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/51999/major_rls33.txt
Source: https://packetstormsecurity.com/files/51999/major_rls33.txt.html