CVE-2022-28524
ED01-CMS v20180505 contains a SQL injection in the component post.php due to lack of validation of externally entered SQL statements. This allows an attacker to execute arbitrary SQL commands on the database, potentially compromising data confidentiality, integrity, and availability. CVSS data fr...