High severity7.5NVD Advisory· Published Aug 11, 2023· Updated Jun 17, 2026
CVE-2020-36136
CVE-2020-36136
Description
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pm_sendmail parameter in csz_model.php.
Affected products
2- cskaza/cszcmsdescription
Patches
Vulnerability mechanics
References
1- github.com/cskaza/cszcms/issues/26nvdExploitIssue Tracking
News mentions
0No linked articles in our index yet.