SQL injection vulnerability in home.html in Xpoze Pro 4.10 allows remote malicious users to execute arbitrary SQL commands via the menu parameter.
xpoze xpoze pro 4.10