CMS Wizard suffers from a remote SQL injection vulnerability.
52ed2fed6ce6b85786204c6fe3cef0f6ccfc46db20c8d2c40ab56d6bab8fba04
This is a brief whitepaper that discusses finding remote and local file inclusion vulnerabilities and how to exploit and patch them.
d28ed75d8eb9604c29fc6876297418475ffea313bb8b01a2430294ecdbd4a18b