3 matches found
CVE-2020-21250
CSZ CMS v1.2.4 was discovered to contain an arbitrary file upload vulnerability in the component /core/MYSecurity.php...
CSZ CMS SQL Injection (CVE-2020-21250)
An SQL injection vulnerability exists in CSZ CMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2020-21250
CSZ CMS v1.2.4 contains an arbitrary file upload vulnerability in the /core/MY_Security.php component (CVE-2020-21250). Multiple connected sources corroborate a file upload issue originating from that specific file, enabling uploads of arbitrary files. Exploitation details are not provided in the...