CVE-2022-23882
CVE-2022-23882 affects TuziCMS 2.0.6. The vulnerability is a SQL injection in the file App\Manage\Controller\BannerController.class.php caused by insufficient validation of external SQL inputs, enabling an attacker to execute arbitrary SQL and potentially access sensitive data. Multiple vendor/ n...