#!/usr/bin/perl
#
# OneCMS v24 Remote SQL Injection Exploit
#
# Description
# -----------
# OneCMS contains a flaw that allows an attacker to carry out an SQL
# injection attack The issue is due to the userreviewsphp script not
# properly sanitizing user-supplied input to the 'abc' variable This may
# allow an attacker to inject or manipula ...