CVE-2021-36503 Information

Description

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file.

Reference

https://github.com/Fanli2012/native-php-cms/issues/3