VYPR
Unrated severityNVD Advisory· Published Feb 4, 2021· Updated Aug 4, 2024

CVE-2020-18717

CVE-2020-18717

Description

SQL Injection in ZZZCMS zzzphp 1.7.1 allows remote attackers to execute arbitrary code due to a lack of parameter filtering in inc/zzz_template.php.

Affected products

2
  • ZZZCMS/zzzphpdescription
  • Zzcms/Zzzphpllm-fuzzy
    Range: = 1.7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.