OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the entriesPerPage variable.
opencats opencats 0.9.6