CVE-2018-8969
CVE-2018-8969 affects zzcms 8.2, specifically the user/licence_save.php endpoint. The vulnerability allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter of an action=modify request, which can be used to progress to database access by deleting...