CVE-2018-8968
CVE-2018-8968 affects zzCMS version 8.2, specifically the user/manage.php endpoint. A vulnerability in the handling of directory traversal sequences in the oldimg and oldflv parameters within an action=modify request allows remote attackers to delete arbitrary files (including install.lock), crea...