@Behn00d said:The worst of it is that the vulnerable CMS is called GOSS Intellegent Content Management! That's a big WTF!Why? Does it have a bad reputation?ObSidetrack: I've taught CSS and basic HTML to people that are to be assigned the job of hacking maintaining some proprietry content management system for their organisations' [ inter | intra | extra ]net, and I happen across several that already know their stuff - since they use a common CMS like wordpress/drupal/xoop/etc. They often regale with tales of how they could have produced the same solution, more quickly and cheaply - but management prefered to spend loads on a CMS with half the functionality and closed-source support.Our organisation, at least, investigated some CMS and settled on Drupal.