Limerence

**Name of the Vulnerable Software and Affected Versions** CSZ CMS version 1.2.2 **Description** The issue is related to SQL Injection, which can be exploited via the `cszcms admin Plugin manager setstatus` function. This allows for potential unauthorized access to database information. **Recommendations** For CSZ CMS version 1.2.2, consider disabling the `cszcms admin Plugin manager setstatus` function until a patch is available to prevent potential SQL Injection attacks.