0Xzmzo

**Name of the Vulnerable Software and Affected Versions** fastadmin-tp6 version 1.0 **Description** The issue concerns a lack of filtering for the `table` parameter in the app/admin/controller/Ajax.php file, allowing a malicious parameter to be passed for SQL injection. **Recommendations** For fastadmin-tp6 version 1.0, consider filtering or validating the `table` parameter to prevent malicious input and SQL injection attacks. As a temporary workaround, restrict access to the Ajax.php file or the `table` parameter to minimize the risk of exploitation.