Beach

**Name of the Vulnerable Software and Affected Versions** SiteEngine version 7.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `module` parameter in comments.php. **Recommendations** For SiteEngine version 7.1, avoid using the `module` parameter in the comments.php file until a patch is available. As a temporary workaround, consider restricting access to comments.php to minimize the risk of exploitation.