2 matches found
CVE-2021-45347
An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password...
CVE-2021-45347
CVE-2021-45347 affects zzcms 8.2. It is an Incorrect Access Control vulnerability allowing an unauthenticated attacker to bypass login by changing the username in the cookie to use any password. The connected sources consistently describe this flaw as an authentication bypass in zzcms 8.2. No spe...