Nsnyy

**Name of the Vulnerable Software and Affected Versions** Mingsoft MCMS version 5.2.7 **Description** A SQL injection issue was discovered in Mingsoft MCMS. The issue is related to the `/cms/content/list` API endpoint. **Recommendations** For Mingsoft MCMS version 5.2.7, consider restricting access to the `/cms/content/list` API endpoint until a patch is available. Avoid using user-supplied input in SQL queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.