SQL Injection vulnerability in WebPort <=1.19.1 via the new connection, parameter name in type-conn.
webport webport