CVE-2018-18786
CVE-2018-18786 affects ZZCMS 8.3 with a SQL injection in ajax/zs.php exploitable via a pxzs cookie. Root cause: insufficient input validation leading to injection. Impact noted as high/critical across confidentiality, integrity, and availability; CNVD reports attacker can obtain the current MySQL...