Lucene search
K

5 matches found

CNNVD
CNNVD
added 2022/06/17 12:0 a.m.4 views

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS by the ZZCMS team in China. A security vulnerability exists in ZZCMS 2019 version, which can be exploited by an attacker to perform a SQL injection attack via the id parameter in /user/dlsdownload.php...

8.8CVSS5.9AI score0.00908EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.5 views

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS from the ZZCMS team in China. zzCMS version 2019 is vulnerable to SQL injection, which stems from the lack of security filtering of the id parameter in /dl/dldownload.php. No detailed vulnerability details are provided at this time...

9.8CVSS5.8AI score0.01385EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/10/14 12:0 a.m.4 views

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS from the Zzcms team in China.ZZCMS version 2019 is vulnerable to SQL injection, which stems from the lack of effective filtering and escaping of SQL statements in the subzs.php component. An attacker could use this vulnerability to execute illegal SQL...

7.5CVSS6AI score0.01807EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/08/26 12:0 a.m.5 views

ZZCMS 代码注入漏洞

ZZCMS is a content management system CMS by China Zzcms team. A security vulnerability exists in ZZCMS, which originates from a Remote Code Execution RCE vulnerability in templateuser.php in the 2018 version of ZZCMS. The vulnerability can be exploited to execute arbitrary PHP code via the "ml" a...

7.2CVSS7.7AI score0.0282EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/01/11 12:0 a.m.9 views

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS by Zzcms team in China. ZZCMS ver201910 suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in database-based applications. An attacker can exploit this vulnerability to execute illegal SQL...

8.8CVSS7.5AI score0.01266EPSS
Exploits1References4
Rows per page
Query Builder