PT-2022-11348 · Unknown · Cms Made Simple

Name of the Vulnerable Software and Affected Versions: CMS Made Simple versions 2.2.15 and earlier Description: The issue concerns SQL injection in the modules/News/function.admin articlestab.php file. Specifically, the $sortby variable is concatenated with $query1, allowing for the injection of...