CVE-2018-17048

admin/Lib/Action/FpluginAction.class.php in FDCMS (aka Fangfa Content Manage System) 4.2 allows SQL Injection.
Source: NIST
CVE-2018-17048