SQL injection vulnerability in default.asp in CIS Manager CMS allows remote malicious users to execute arbitrary SQL commands via the TroncoID parameter.
construtiva cis manager cms -