High severity7.5NVD Advisory· Published Mar 24, 2018· Updated Jun 17, 2026
CVE-2018-8966
CVE-2018-8966
Description
An issue was discovered in zzcms 8.2. It allows PHP code injection via the siteurl parameter to install/index.php, as demonstrated by injecting a phpinfo() call into /inc/config.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/Ni9htMar3/vulnerability/blob/master/zzcms_8.2/install.mdnvdExploitMitigationThird Party Advisory
News mentions
0No linked articles in our index yet.