SQLi vulnerability in Cmswing v1.3.7

[Jason1314Zhang]

Find a SQLi vulnerability in cmswing project version 1.3.7，Details can be found in the analysis below.

Local Test

1.Enter the background of the system, select update_channel module，then edit it.

2.Change behavior rule table:member|field:score|condition:id=${self} AND (select if(substr(version(),1)>0,sleep(5),1))|rule:1

3.Enter [System settings] - [Navigation settings], change a navigation .

4.Change anything, then save it.we can find sqli vulnerability.