SQL Injection Vulnerability in PHPMyWind sysevent.php File
PHPMyWind is a PHP MySQL-based development , W3C-compliant building engine . A SQL injection vulnerability exists in the PHPMyWind sysevent.php file. The vulnerability is due to the system siteid parameter does not filter the data submitted by the user, a remote attacker can exploit the...