CVE-2022-24602
CVE-2022-24602 affects Luocms v2.0. A SQL injection vulnerability exists in the admin module file /admin/news/news_mod.php due to lack of validation of external input in SQL statements, enabling an attacker to execute arbitrary SQL commands and potentially steal sensitive database data. The incid...