A vulnerability, which was classified as critical, was found in Mingsoft MCMS 5.2.9. Affected is an unknown function of the file /content/list.do. The manipulation of the argument categoryType leads to sql injection.
This vulnerability is traded as CVE-2023-50578. Access to the local network is required for this attack to succeed. There is no exploit available.