Vikt0R101

**Name of the Vulnerable Software and Affected Versions** TuziCMS version 2.0.6 **Description** The issue is related to SQL injection in the BannerController.class.php file, located at AppManageController. This affects the ability to securely manage data. **Recommendations** For TuziCMS version 2.0.6, consider restricting access to the BannerController.class.php file until a patch is available. As a temporary workaround, avoid using the `BannerController` class until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.