CVE-2023-34545
CSZCMS 1.3.0 has a SQL injection vulnerability exploitable via the p parameter or the search URL, allowing remote attackers to execute arbitrary SQL commands. The CVSSv3.1 base score is 9.8 (CRITICAL) with impact to confidentiality, integrity, and availability. The documents do not specify a vend...