2 matches found
CVE-2021-40280
creationtimestamp| type| source ---|---|--- 2021-12-09 18:23:50+00:00| seen| https://t.me/cibsecurity/33687...
CVE-2021-40280
The CVE-2021-40280 entry describes an SQL injection vulnerability in ZZCMS (ZZCMS CMS) exposed via the id parameter in admin/dl_sendmail.php. Affected versions are listed as 8.2, 8.3, 2020, and 2021. The root cause is missing validation of externally supplied SQL statements, enabling an attacker ...