DedeCMS up to and including 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.
dedecms dedecms