Myucms v2.2.1 contains a server-side request forgery (SSRF) in the component \controller\index.php, which can be exploited via the sql() method.Referenceshttps://github.com/lolipop1234/XXD/issues/4
