XYCMS hf_book.php page id parameter has SQL injection vulnerability
XYCMS php version was formerly known as Nanjing XYCMS Enterprise Building System. XYCMS background hfbook.php page id parameters exist SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...