Full title: VoltEdit CMS SQL Injection / Shell Upload Vulnerabilities Category: web applications Platform: php VoltEdit CMS suffers from administrative login bypass due to remote SQL injection and allows for PHP shells to be uploaded. Note that this finding houses site-specific data. # 0day.today @ http://0day.today/