Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:48 a.m.7 views

CVE-2022-27133

zbzcms v1.0 was discovered to contain an arbitrary file deletion vulnerability via /include/up.php...

9.1CVSS7.5AI score0.01017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:48 a.m.6 views

CVE-2022-27128

An incorrect access control issue at /admin/runajax.php in zbzcms v1.0 allows attackers to arbitrarily add administrator accounts...

9.8CVSS6.9AI score0.01119EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31664

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00995EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31671

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.01017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:52 p.m.8 views

CVE-2022-27125

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

6.1CVSS6AI score0.00591EPSS
Exploits0References1
NVD
NVD
added 2022/04/10 9:15 p.m.24 views

CVE-2022-27133

zbzcms v1.0 was discovered to contain an arbitrary file deletion vulnerability via /include/up.php...

9.1CVSS0.01017EPSS
Exploits0References1
NVD
NVD
added 2022/04/10 9:15 p.m.14 views

CVE-2022-27127

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php/ajax.php...

6.5CVSS0.00677EPSS
Exploits0References1
NVD
NVD
added 2022/04/10 9:15 p.m.32 views

CVE-2022-27131

An arbitrary file upload vulnerability at /zbzedit/php/zbz.php in zbzcms v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS0.01465EPSS
Exploits0References1
NVD
NVD
added 2022/04/10 9:15 p.m.21 views

CVE-2022-27129

An arbitrary file upload vulnerability at /admin/ajax.php in zbzcms v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS0.01465EPSS
Exploits0References1
NVD
NVD
added 2022/04/10 9:15 p.m.22 views

CVE-2022-27125

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

6.1CVSS0.00591EPSS
Exploits0References1
Prion
Prion
added 2022/04/10 9:15 p.m.16 views

Design/Logic Flaw

An arbitrary file upload vulnerability at /admin/ajax.php in zbzcms v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.5CVSS9.6AI score0.01465EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.11 views

Sql injection

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php/ajax.php...

6.4CVSS6.8AI score0.00677EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.16 views

Arbitrary file deletion

zbzcms v1.0 was discovered to contain an arbitrary file deletion vulnerability via /include/up.php...

6.4CVSS9.3AI score0.01017EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.16 views

Improper access control

An incorrect access control issue at /admin/runajax.php in zbzcms v1.0 allows attackers to arbitrarily add administrator accounts...

7.5CVSS9.3AI score0.01119EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.14 views

Design/Logic Flaw

An arbitrary file upload vulnerability at /zbzedit/php/zbz.php in zbzcms v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.5CVSS9.6AI score0.01465EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.16 views

Sql injection

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the art parameter at /include/make.php...

7.5CVSS9.8AI score0.00995EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/10 9:15 p.m.18 views

Cross site scripting

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

4.3CVSS6AI score0.00591EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/10 8:24 p.m.25 views

CVE-2022-27125

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

6.2AI score0.00591EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/10 8:24 p.m.22 views

CVE-2022-27126

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the art parameter at /include/make.php...

10AI score0.00995EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/10 8:24 p.m.29 views

CVE-2022-27128

An incorrect access control issue at /admin/runajax.php in zbzcms v1.0 allows attackers to arbitrarily add administrator accounts...

9.6AI score0.01119EPSS
Exploits0References1
Rows per page
Query Builder