2 matches found
CVE-2018-9309
An issue was discovered in zzcms 8.2. It allows SQL injection via the id parameter in a dl/dlsendsms.php request...
CVE-2018-9309
CVE-2018-9309 affects zzcms 8.2, where the id parameter in the dl/dl_sendsms.php request enables SQL injection. The NVD entry documents a high‑risk flaw with CVSS v3.1 base score 9.8 (NETWORK, LOW complexity, no privileges, UI/N user interaction, with HIGH impact on confidentiality, integrity, an...