CuppaCMS v1.0 exists to contain a SQL injection vulnerability via the menu_filter parameter at /administrator/templates/default/html/windows/right.php.
cuppacms cuppacms 1.0