CVE-2015-1423
Gecko CMS 2.2 and 2.3 are affected by multiple SQL injection vulnerabilities. The issues allow remote administrators to execute arbitrary SQL commands via the (1) jak_delete_log[] or (2) ssp parameter to admin/index.php, enabling potential unauthorized data access or modification. The root cause ...