VYPR
Unrated severityNVD Advisory· Published Sep 29, 2023· Updated Jun 18, 2025

ZZZCMS Database Backup File save.php restore permission

CVE-2023-5263

Description

A vulnerability was found in ZZZCMS 2.1.7 and classified as critical. Affected by this issue is the function restore of the file /admin/save.php of the component Database Backup File Handler. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-240872.

Affected products

2
  • Zzcms/Zzcmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =2.1.7

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.