VYPR

Zzcms

by Forget Code

Source repositories

CVEs (3)

  • CVE-2021-43703Dec 9, 2021
    risk 0.00cvss epss 0.02

    An Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console.

  • CVE-2018-17416Mar 7, 2019
    risk 0.00cvss epss 0.01

    A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.

  • CVE-2018-17414Mar 7, 2019
    risk 0.00cvss epss 0.01

    zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter.