M40K1N9

Name of the Vulnerable Software and Affected Versions: PbootCMS version 3.0.4 Description: The issue allows for SQL injection through the `search` parameter in `index.php`, potentially revealing sensitive information and enabling the addition of an admin account. Recommendations: For PbootCMS version 3.0.4, consider restricting access to the `index.php` endpoint until a patch is available, and avoid using the `search` parameter to minimize the risk of exploitation.