ATTENTION IT TEAM! I am Liam O Sullivan, security researcher from Dublin, Ireland. Your CMS has critical vulnerabilities: 1) Unauthenticated content posting via pross.inc.php 2) Directory listing on /upload/ /cms/inc/ 3) No CSRF protection. NO DAMAGE was done to your site. Please fix these issues immediately. This is a friendly disclosure. Best regards - Liam O Sullivan, Dublin Ireland