idreamsoft iCMS spider_project.admincp.php file SQL injection vulnerability
idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in the spiderproject.admincp.php file in idreamsoft iCMS version 7.0.14. The vulnerability stems from a lack of validation of externally entered SQL statements in...