An issue exists in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter.
nexusfi opac easyweb five 5.7