3 matches found
CVE-2019-16657
TuziCMS 2.0.6 has XSS via the PATHINFO to a group URI, as demonstrated by index.php/article/group/id/2/...
EUVD-2019-7223
Malware in sbrugna...
CVE-2023-0243 TuziCMS Article Module ArticleController.class.php index sql injection
A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function index of the file App\Manage\Controller\ArticleController.class.php of the component Article Module. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...