SQL injection vulnerability in pages.php in MyPHP CMS 0.3.1 allows remote malicious users to execute arbitrary SQL commands via the pid parameter.
myphp cms myphp cms 0.3.1