Zzcms
by Forget Code
Source repositories
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-43703 | 0.00 | — | 0.02 | Dec 9, 2021 | An Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console. | |||
| CVE-2018-17416 | 0.00 | — | 0.01 | Mar 7, 2019 | A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter. | |||
| CVE-2018-17414 | 0.00 | — | 0.01 | Mar 7, 2019 | zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter. |
- CVE-2021-43703Dec 9, 2021risk 0.00cvss —epss 0.02
An Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console.
- CVE-2018-17416Mar 7, 2019risk 0.00cvss —epss 0.01
A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.
- CVE-2018-17414Mar 7, 2019risk 0.00cvss —epss 0.01
zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter.