SQL injection vulnerability in index.php in Webdevindo-CMS 1.0.0 allows remote malicious users to execute arbitrary SQL commands via the hal parameter.
webdevindo-cms webdevindo-cms 1.0.0