SQL injection vulnerability in FlexCMS allows remote attackers to execute arbitrary SQL commands via the catId parameter.Referenceshttps://www.exploit-db.com/exploits/8018https://exchange.xforce.ibmcloud.com/vulnerabilities/48609http://www.securityfocus.com/bid/33696
