Ricew4Ng

**Name of the Vulnerable Software and Affected Versions** PbootCMS version 1.2.1 **Description** The issue is related to SQL injection in the SearchController.php file of PbootCMS. This occurs via the query string in the index.php/Search/index.html endpoint. **Recommendations** For PbootCMS version 1.2.1, consider updating to a newer version that contains a fix for this issue, if available. As a temporary workaround, restrict access to the SearchController.php file to minimize the risk of exploitation. Avoid using the index.php/Search/index.html endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.