CVE-2019-12350
CVE-2019-12350 affects zzCMS (2019) with a SQL Injection in the script /dl/dl_download.php where an id parameter value with a trailing comma is unsafely handled. Root cause: lack of input filtering/validation for the id parameter, enabling injection. Consequences per the entry indicate a high-sev...