BlueCMS v1.6 exists to contain a SQL injection vulnerability via the keywords parameter at search.php.
bluecms project bluecms 1.6