SQL injection vulnerability in index.php in Codice CMS 2 allows remote malicious users to execute arbitrary SQL commands via the tag parameter.
codice-cms codice cms 2