VYPR
Unrated severityNVD Advisory· Published Aug 19, 2024· Updated Aug 20, 2024

ZZCMS class.php path traversal

CVE-2024-7927

Description

A vulnerability classified as critical was found in ZZCMS 2023. Affected by this vulnerability is an unknown functionality of the file /admin/class.php?dowhat=modifyclass. The manipulation of the argument skin[] leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Affected products

2
  • Zzcms/Zzcmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =2023

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.