ZYCHCMS 'Fieldid' Parameter Has SQL Injection Vulnerability
ZYCHCMS is an enterprise website management system. ZYCHCMS v06 Build161216 suffers from a SQL injection vulnerability. The lack of filtering of the 'Fieldid' parameter allows attackers to exploit the vulnerability to obtain sensitive information about the database...