[原文]Multiple SQL injection vulnerabilities in RunCMS 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) addquery and (2) subquery parameters to the newbb plus module, the forum parameter to (3) newtopic.php, (4) edit.php, or (5) reply.php in the newbb plus module, or (6) the msg_id parameter to print.php in the messages module.
RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'Search Engine' not properly sanitizing user-supplied input to the 'addquery' and 'subquery' variables. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.
Currently, there are no known workarounds or upgrades to correct this issue. However, Farsus has released a patch to address this vulnerability.