7.9 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.4%
core/MY_Security.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrf_csz parameter.
github.com/cskaza/cszcms/issues/19