CVE-2010-5024
CVE-2010-5024 affects CuteSITE CMS (versions 1.2.3 and 1.5.0). The flaw is a SQL injection in manage/add_user.php where the user_id parameter is unsafely handled. A remote authenticated user with Read privileges can execute arbitrary SQL commands, potentially reading, modifying, adding, or deleti...