SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the cuid cookie parameter to admin.php.Referenceshttps://www.exploit-db.com/exploits/5088http://www.securityfocus.com/bid/27710https://exchange.xforce.ibmcloud.com/vulnerabilities/40415
