2 matches found
CVE-2022-27165
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcmsadminPluginmanagersetstatus...
CVE-2022-27165
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Plugin_manager_setstatus. The issue arises from unvalidated external input in the affected function, enabling an attacker to execute arbitrary SQL and potentially access sensitive database data. Documented across multiple sources (CNVD...