zzcms version 8.3 and earlier is affected by: SQL Injection. The impact is: zzcms File Delete to Code Execution.
CVSS Score
9.8
EPSS Score
0.006
Published
2019-07-23
zzcms version 8.3 and earlier is affected by: File Delete to Code Execution. The impact is: zzcms File Delete to Code Execution. The component is: user/licence_save.php.
CVSS Score
9.8
EPSS Score
0.011
Published
2019-07-23
zzcms 8.3 and earlier is affected by: File Delete to Code Execution. The impact is: getshell. The component is: /user/zssave.php.
CVSS Score
9.8
EPSS Score
0.011
Published
2019-07-23
zzcms 8.3 and earlier is affected by: File Delete to Code Execution. The impact is: getshell. The component is: user/manage.php line 31-80.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-07-23
zzcms 8.3 and earlier is affected by: SQL Injection. The impact is: sql inject. The component is: zs/subzs.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-07-23
zzcms version 8.3 and earlier contains a SQL Injection vulnerability in zt/top.php line 5 that can result in could be attacked by sql injection in zzcms in nginx. This attack appear to be exploitable via running zzcms in nginx.
CVSS Score
9.8
EPSS Score
0.003
Published
2018-08-20
Page 2