SQL injection vulnerability in a_from parameter of xycms add_article.php page
XYCMS was formerly known as Nanjing XYCMS Enterprise Station Building System, which is a commercial station building system based on ASP development. Xycms SQL injection vulnerability, the system on the addarticle.php page afrom parameter is not effectively filtered, attackers can exploit the...