CmsWing 1.3.7 is affected by a SQLi vulnerability via parameter: behavior rule.
cmswing cmswing 1.3.7