ImpressCMS versions 142 and below pre-authentication SQL injection to remote code execution exploit User input passed through the "groups" POST parameter to the /include/findusersphp script is not properly sanitized before being passed to the icms_member_Handler::getUserCountByGroupLink() and icms_member_Handler::getUsersByGroupLink() methods ...