3 matches found
TUTUCMS system admin\Article.php page by parameter has SQL injection vulnerability
TUTUCMS is a CMS management program developed for image-based websites. A SQL injection vulnerability exists in the admin\Article.php page of the TUTUCMS system. The lack of filtering of the 'by' parameter allows an attacker to exploit the vulnerability to obtain sensitive information from the...
SQL Injection Vulnerability in TUTUCMS System by Parameter
TUTUCMS is a CMS image management system focused on the development of image-based websites. TUTUCMS x2.6 version has a SQL injection vulnerability, due to the system does not strictly filter by parameters, only the source code to do the corresponding code audit. This vulnerability allows attacke...
SQL Injection Vulnerability in TUTUCMS Order Parameter
TUTUCMS is a CMS image management system focused on the development of image-based websites. TUTUCMS x2.6 version has a SQL injection vulnerability, due to the system does not strictly filter order parameters, only the source code to do the corresponding code audit. Allow attackers to exploit the...