sql-injection

I have discovered possible SQL injection (CWE-89) on Raveinfosys/DeleteOrders extensions. This is extension to provide possibility delete orders. Like they describe it Currently, Magento® doesn’t allow you to delete an order from the store. You