SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameter in App\Manage\Controller\DownloadController.class.php.Referenceshttps://github.com/yeyinshi/tuzicms/issues/8
