funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin.
CVSS Metrics
