A vulnerability, which was classified as critical, has been found in SEMCMS 4.8. This issue affects some unknown processing of the file /web_inc.php. The manipulation of the argument languageID leads to sql injection.
The identification of this vulnerability is CVE-2023-48864. The attack needs to be approached within the local network. There is no exploit available.