CVE-2018-17136
CVE-2018-17136 affects ZZCMS v8.3, with a SQL Injection in /user/check.php exploitable via the Client-Ip HTTP header. Root cause is improper handling of the header leading to SQL command injection. Exploitation details are not provided beyond the architectural description; CVSS metrics indicate a...