KenCMS1.0 enterprise has a member version of the system parent parameters exist sql injection vulnerability
KenCMS is a content management system. A SQL injection vulnerability exists in KenCMS V1.0 Enterprise Membership Full Version. The "parent" parameter is not well filtered, which allows attackers to exploit the vulnerability to obtain sensitive information from the database...