XDcms is a general-purpose content management system. XDcms is vulnerable to SQL injection, which can be exploited by attackers to obtain sensitive database information.