SQL Injection Vulnerability in zhicms appcontroller.php Page
ZhiCms is an enterprise building system based on PHP and mysql technology. A SQL injection vulnerability exists in the zhicms appcontroller.php page. The lack of filtering of the 'Guo' parameter allows an attacker to exploit the vulnerability to obtain sensitive information about the database...