Sql injection

SQL injection vulnerability in bin/apsbrowsesources.php in Frontis 3.9.01.24 allows remote attackers to execute arbitrary SQL commands via the sourceclass parameter in a browseclasses action...