VYPR
Unrated severityNVD Advisory· Published Feb 26, 2019· Updated Dec 9, 2025

CVE-2019-9182

CVE-2019-9182

Description

There is a CSRF in ZZZCMS zzzphp V1.6.1 via a /admin015/save.php?act=editfile request. It allows PHP code injection by providing a filename in the file parameter, and providing file content in the filetext parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zzcms/Zzzphpinferred2 versions
    <=1.6.1+ 1 more
    • (no CPE)range: <=1.6.1
    • (no CPE)range: =1.6.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.