Umpi

**Name of the Vulnerable Software and Affected Versions** paBugs versions 2.0 Beta 3 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `cid` parameter to the "index.php" endpoint. **Recommendations** For paBugs versions 2.0 Beta 3 and earlier, consider restricting access to the `cid` parameter in the "index.php" endpoint until a patch is available.