CVE-2023-52064
Wuzhicms v4.1.0 is affected by a SQL injection via the $keywords parameter in /core/admin/copyfrom.php. Root cause: input in $keywords is used in a SQL query without sufficient sanitization, enabling potentially arbitrary data access or modification. The CVSS v3.1 metrics indicate a critical impa...