SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-89,
Products Affected