Show filters
27 Total Results
Displaying 1-10 of 27
Sort by:
Attacker Value
Unknown

CVE-2021-40282

Disclosure Date: December 09, 2021 (last updated February 23, 2025)
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, abd 2021 in dl/dl_download.php. when registering ordinary users.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-40281

Disclosure Date: December 09, 2021 (last updated February 23, 2025)
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dl_print.php when registering ordinary users.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-40280

Disclosure Date: December 09, 2021 (last updated February 23, 2025)
An SQL Injection vulnerablitly exits in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/dl_sendmail.php.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-40279

Disclosure Date: December 09, 2021 (last updated February 23, 2025)
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/bad.php.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2018-17415

Disclosure Date: March 07, 2019 (last updated November 27, 2024)
zzcms V8.3 has a SQL injection in /user/zs_elite.php via the id parameter.
0
0
Attacker Value
Unknown

CVE-2018-17416

Disclosure Date: March 07, 2019 (last updated November 27, 2024)
A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.
0
0
Attacker Value
Unknown

CVE-2018-17413

Disclosure Date: March 07, 2019 (last updated November 27, 2024)
XSS exists in zzcms v8.3 via the /uploadimg_form.php noshuiyin parameter.
0
0
Attacker Value
Unknown

CVE-2018-17414

Disclosure Date: March 07, 2019 (last updated November 27, 2024)
zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter.
0
0
Attacker Value
Unknown

CVE-2018-17412

Disclosure Date: March 07, 2019 (last updated November 27, 2024)
zzcms v8.3 contains a SQL Injection vulnerability in /user/logincheck.php via an X-Forwarded-For HTTP header.
0
0
Attacker Value
Unknown

CVE-2018-18791

Disclosure Date: October 29, 2018 (last updated November 27, 2024)
An issue was discovered in zzcms 8.3. SQL Injection exists in zs/search.php via a pxzs cookie.
0
0
View More Topics  Next >