Stjohns

**Name of the Vulnerable Software and Affected Versions** grinnellplans-php versions up to 3.0 **Description** A critical issue has been found, affecting the function `interface disp page/interface disp page` of the file read.php, leading to sql injection. The attack can be launched remotely. **Recommendations** For grinnellplans-php versions up to 3.0, it is recommended to apply a patch to fix this issue. As a temporary workaround, consider disabling the `interface disp page/interface disp page` function until a patch is available.