SQL injection vulnerability in admin/index.php in Dragan Mitic Apoll 0.7 beta and 0.7.5 allows remote attackers to execute arbitrary SQL command via the pass parameter.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/46286https://www.exploit-db.com/exploits/6969
