S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type field). Date published : 2018-10-31 http://www.iwantacve.cn/in