CVE-2023-36162

2023-07-0300:00:00

mitre

www.cve.org

zzcms v.2023

cross site request forgery

remote attacker

privileges

adminlist.php

vulnerability

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Cross Site Request Forgery vulnerability in ZZCMS v.2023 and earlier allows a remote attacker to gain privileges via the add function in adminlist.php.

References

www.zzcms.net/about/download.html

github.com/779789571/zzcms/blob/main/README.md

github.com/forget-code/zzcms/issues/6