Full title: Mida Solutions eFramework 2.9.0 XSS / Code Execution / SQL Injection Vulnerabilities Category: web applications Platform: php Mida Solutions eFramework versions 2.9.0 and below suffer from command execution, cross site scripting, denial of service, remote SQL injection, and path traversal vulnerabilities. # 0day.today @ http://0day.today/