CVE-2010-4612
Hycus CMS 1.0.3 is affected by CVE-2010-4612: multiple SQL injection in index.php when magic_quotes_gpc is disabled. Vulnerable parameters include user_name and usr_email (hregister.html, hlogin.html), useremail (forgotpass.html), and q (search.html). Root cause is input sanitation flaws allowing...