A vulnerability classified as critical was found in S-CMS 5.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php. The manipulation of the argument A_productauth leads to sql injection.
This vulnerability is known as CVE-2023-51050. The attack can only be done within the local network. There is no exploit available.