CVE-2024-37791 Information

Description

DuxCMS3 v3.1.3 was discovered to contain a SQL injection vulnerability via the keyword parameter at /article/Content/index?class_id.

Reference

https://github.com/duxphp/DuxCMS3/ https://github.com/duxphp/DuxCMS3/issues/5