CVE-2019-11452 (whatsns)

whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection.
Source: NIST
CVE-2019-11452 (whatsns)