Csz Cms@* Security Vulnerabilities and Issues — Csz Cms@* CVE List

Lucene search

CszcmsCsz Cms*

2 matches found

CVE•added 2019/06/30 5:15 p.m.•61 views

CVE-2019-13086

core/MY_Security.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrf_csz parameter.

9.8CVSS9.8AI score0.50772EPSS

CVE•added 2024/04/19 4:15 p.m.•47 views

CVE-2024-27752

Cross Site Scripting vulnerability in CSZ CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the Default Keyword field in the settings function.

5.4CVSS7.3AI score0.0064EPSS