Security C.COM Events CMS 0.1.02 SQL Injection / Authentication Bypass July 12, 2016 007admin Leave a comment C.COM Events CMS version 0.1.02 suffers from a remote SQL injection vulnerability that allows for login bypass.