Medium severity5.3NVD Advisory· Published Feb 24, 2018· Updated Jun 17, 2026

CVE-2018-7434

Description

zzcms 8.2 allows remote attackers to discover the full path via a direct request to 3/qq_connect2.0/API/class/ErrorCase.class.php or 3/ucenter_api/code/friend.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Zzcms/Zzcmsinferred
Range: = 8.2
Kongxin520/zzcmsllm-create
Range: = 8.2

Patches

Vulnerability mechanics

References

kongxin.gitbook.io/zzcms-8-2-bug/nvdExploitThird Party Advisory
github.com/kongxin520/zzcms/blob/master/zzcms_8.2_bug.mdnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000