SQL Injection Vulnerability in cid and keyword parameters of KenCMS V1.1 Enterprise Membership Experience Edition System
KenCMS is a content management system. A SQL injection vulnerability exists in the KenCMS V1.1 Enterprise Member Experience system. The lack of filtering of the 'cid' and 'keyword' parameters allows an attacker to exploit the vulnerability to obtain sensitive information from the database...