7 matches found
CVE-2025-29083
SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the execSqlFile function in the PluginManager.php file...
CVE-2025-29083
SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the execSqlFile function in the PluginManager.php file...
CSZ CMS 代码问题漏洞
CSZ CMS is an open source PHP-based content management system CMS. A security vulnerability exists in CSKaza CSZ CMS version 1.2.2, which originates from a vulnerability that allows attackers to execute arbitrary commands and code via a crafted PHP file...
CSZ CMS SQL注入漏洞
CSZ CMS is a PHP-based open source content management system CMS. CSZ CMS version 1.2.2 contains a SQL injection vulnerability, which originates from the lack of validation of external input SQL statements in cszcmsadminPluginmanagersetstatus, and can be exploited by attackers to execute illegal...
CSZ CMS SQL注入漏洞
CSZ CMS is a PHP-based open source content management system CMS. A file upload vulnerability exists in the v1.2.4 version of CSZ CMS, which originates from the /core/MYSecurity.php component of the product not validating the uploaded file. An attacker can use this vulnerability to upload arbitra...
CSZ CMS 安全漏洞
CSZ CMS is a PHP-based open source content management system CMS. version 1.2.9 of CSZ CMS contains a security vulnerability that stems from the vulnerability of CSZ CMS to arbitrary file deletion. This can occur in PHP when the unlink function is called with user input that may affect part or th...
File Upload Vulnerability in CSZ CMS
CSZ CMS is an open source web application that allows to manage all the content and settings on a website. A file upload vulnerability exists in CSZ CMS, which can be exploited by an attacker to upload malicious files and gain administrative privileges on the server...