CVE-2023-1368
CVE-2023-1368 concerns XHCMS 1.0, specifically the POST Parameter Handler’s login.php. The vulnerability arises from unknown code in login.php where manipulating the POST parameter user enables SQL injection. Exploitation can be performed remotely, and multiple sources describe the issue as criti...