ATTENTION IT TEAM! I am Liam O Sullivan, security researcher from Dublin, Ireland. Your CMS has critical vulnerabilities: 1) Unauthenticated content posting via pross.inc.php 2) Directory listing on /upload/ /cms/inc/ 3) No CSRF protection. NO DAMAGE was done to your site. Please fix these issues immediately. Contact: security@example.ie - Friendly disclosure by Liam O Sullivan