CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/22 3:16 p.m.•4 views

CVE-2020-19042

Cross Site Scripting XSS vulnerability exists in zzcms 2019 XSS via a modify action in user/adv.php...

6.1CVSS5.1AI score0.00293EPSS

Exploits1

Prion•added 2021/12/13 9:15 p.m.•9 views

Cross site scripting

Cross Site Scripting XSS vulnerability exists in zzcms 2019 XSS via a modify action in user/adv.php...

4.3CVSS5.7AI score0.00293EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/12/13 8:45 p.m.•15 views

CVE-2020-19042

Cross Site Scripting XSS vulnerability exists in zzcms 2019 XSS via a modify action in user/adv.php...

5.8AI score0.00293EPSS

Exploits1References1

Prion•added 2021/04/08 3:15 p.m.•13 views

Improper access control

zzcms 201910 contains an access control vulnerability through escalation of privileges in /user/adv.php, which allows an attacker to modify data for further attacks such as CSRF...

7.5CVSS9.5AI score0.0012EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/04/08 2:27 p.m.•11 views

CVE-2020-23426

zzcms 201910 contains an access control vulnerability through escalation of privileges in /user/adv.php, which allows an attacker to modify data for further attacks such as CSRF...

9.6AI score0.0012EPSS

Exploits1References1

NVD•added 2018/04/07 2:29 a.m.•11 views

CVE-2018-9331

An issue was discovered in zzcms 8.2. user/adv.php allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter. This can be leveraged for database access by deleting install.lock...

7.5CVSS7.6AI score0.00585EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by