Cmscontrol · Cmscontrol Content Management System · CVE-2009-3326
**Name of the Vulnerable Software and Affected Versions**
CMScontrol Content Management System versions 7.x
**Description**
The issue allows remote attackers to execute arbitrary SQL commands via the `id menu` parameter in the index.php file.
**Recommendations**
For CMScontrol Content Management System version 7.x, avoid using the `id menu` parameter in the affected index.php file until the issue is resolved.