Komomon

**Name of the Vulnerable Software and Affected Versions** CSZCMS version 1.3.0 **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the `p` parameter or the search URL. **Recommendations** For CSZCMS version 1.3.0, consider restricting access to the `p` parameter and the search URL to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.