CVE-2019-11450 (whatsns)

whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection.
Source: NIST
CVE-2019-11450 (whatsns)