CuppaCMS v1.0 was discovered to contain a SQL injection vulnerability via the menu_filter parameter at /administrator/templates/default/html/windows/right.php.Referenceshttps://github.com/CuppaCMS/CuppaCMS/issues/30