VYPR
Unrated severityNVD Advisory· Published Aug 16, 2024· Updated Aug 19, 2024

CVE-2024-43005

CVE-2024-43005

Description

A reflected cross-site scripting (XSS) vulnerability in the component dl_liuyan_save.php of ZZCMS v2023 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload.

Affected products

2
  • Zzcms/Zzcmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = v2023

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.