3 matches found
CVE-2023-45555
File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker to execute arbitrary code via a crafted file to the downurl function in zzz.php file...
CVE-2023-45555
File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker to execute arbitrary code via a crafted file to the downurl function in zzz.php file...
CVE-2023-45555
zzzCMS 2.1.9 has a file upload vulnerability that allows remote code execution via a crafted file targeting the down_url function in zzz.php. This is documented across multiple sources (NVD, Red Hat, CNNVD, PRION, PT-2023-29572, etc.). Root cause: improper handling in down_url/zzz.php. Remediatio...