SQL Injection Vulnerability in Qibo Blog System

Zibo Blog System is a multi-user blog system. There is a SQL injection leak in the Qibo Blog System. The SQL injection vulnerability is caused due to uninitialized $TBpre in the '/blog/template/space/file/listbbs.php' function, which is registered according to a pseudo-global variable in the Qibo...