EUVD-2021-29900

Malicious code in bioql PyPI...

CVE-2021-42945

A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask.php...

The vulnerability of the admin/ask.php implementation in the ZZCMS CMS system allows a hacker to execute arbitrary SQL queries.

The vulnerability of the admin/ask.php implementation in the ZZCMS CMS system relates to the lack of measures taken to protect the SQL query structure during the processing of the askbigclassid parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries...

ZZCMS SQL Injection Vulnerability (CNVD-2021-101691)

ZZCMS is a content management system CMS from the Zzcms team in China.ZZCMS is vulnerable to SQL injection in 2021, which stems from a lack of validation of external input SQL statements in the askbigclassid parameter of /admin/ask.php in the application. An attacker could use this vulnerability ...

CVE-2021-42945

A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask.php...

CVE-2021-42945

CVE-2021-42945 is a confirmed SQL Injection in ZZCMS 2021, exploitable via the askbigclassid parameter in /admin/ask.php. The vulnerability stems from lack of input validation on external SQL statements, allowing an attacker to execute arbitrary SQL commands and potentially exfiltrate sensitive d...

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS from the Zzcms team in China.ZZCMS is vulnerable to SQL injection in 2021, which stems from a lack of validation of external input SQL statements in the askbigclassid parameter of /admin/ask.php in the application. An attacker could use this vulnerability ...