8 matches found
CVE-2019-13086
core/MYSecurity.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrfcsz parameter...
CVE-2022-27163
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcmsadminUserseditUser...
CVE-2022-27161
Csz Cms 1.2.2 is vulnerable to SQL Injection via cszcmsadminMembersviewUsers...
Sql injection
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcmsadminPluginmanagersetstatus...
Sql injection
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcmsadminMemberseditUser...
Sql injection
Csz Cms 1.2.2 is vulnerable to SQL Injection via cszcmsadminMembersviewUsers...
CVE-2022-27161
Csz Cms 1.2.2 is vulnerable to SQL Injection via cszcmsadminMembersviewUsers...
CVE-2019-13086
core/MYSecurity.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrfcsz parameter...