27 matches found
EUVD-2022-43725
Malicious code in bioql PyPI...
EUVD-2022-43724
Malicious code in bioql PyPI...
CVE-2022-40446
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail==...
CVE-2022-40444
ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? server...
CVE-2022-40447
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojialist.php...
CVE-2022-44361
An issue was discovered in ZZCMS 2022. There is a cross-site scripting XSS vulnerability in admin/adlist.php...
Cross site scripting
An issue was discovered in ZZCMS 2022. There is a cross-site scripting XSS vulnerability in admin/adlist.php...
CVE-2022-44361
An issue was discovered in ZZCMS 2022. There is a cross-site scripting XSS vulnerability in admin/adlist.php...
CVE-2022-40444
ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? server...
CVE-2022-40446
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=...
CVE-2022-40443
An absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /one/siteinfo.php...
CVE-2022-40444
ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? server...
CVE-2022-40446
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=...
CVE-2022-40447
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojialist.php...
CVE-2022-40447
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojialist.php...
Path traversal
ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? server...
Sql injection
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojialist.php...
Sql injection
ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=...
Path traversal
An absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /one/siteinfo.php...
CVE-2022-40447
CVE-2022-40447 affects ZZCMS 2022 with a SQL injection in the admin/baojia_list.php endpoint through the keyword parameter. The vulnerability is described as an SQL injection (concrete vulnerable vector: keyword parameter) and is rated with CVSS 3.1: 7.2 (HIGH) with network attack vector, low att...