SQL Injection Vulnerability in Ocean CMS uesMode Parameter
Ocean CMS is an open source website builder. An SQL injection vulnerability exists in the admincollect.php page in the official version of Ocean CMS 6.46 utf-8. The lack of filtering of the 'uesMode' parameter allows an attacker to exploit the vulnerability to obtain sensitive information about t...