CVE-2018-14012by Jeremyin Security Bulletinson Posted on July 12, 2018 WolfSight CMS 3.2 allows SQL injection via the PATH_INFO to the default URI.