SQL injection vulnerability in ZZCMS system searchform.php file
ZZCMS is an enterprise website builder. ZZCMS System v7.1 suffers from a SQL injection vulnerability. The searchform.php file in the /company/ directory fails to correctly process $COOKIE'companyb' data, allowing remote attackers to exploit the vulnerability by submitting a specially crafted SQL...