High severity7.5NVD Advisory· Published Apr 7, 2018· Updated Jun 17, 2026
CVE-2018-9331
CVE-2018-9331
Description
An issue was discovered in zzcms 8.2. user/adv.php allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter. This can be leveraged for database access by deleting install.lock.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/cherryla/zzcms/blob/master/adv.php.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.