Shodan
Vulnerabilities
Vulnerable Software
Zzcms:  >> Zzcms  >> 2021  Security Vulnerabilities
CVE-2021-46437
An issue was discovered in ZZCMS 2021. There is a cross-site scripting (XSS) vulnerability in ad_manage.php.
CVSS Score
4.8
EPSS Score
0.002
Published
2022-04-08
CVE-2021-45286
Directory Traversal vulnerability exists in ZZCMS 2021 via the skin parameter in 1) index.php, 2) bottom.php, and 3) top_index.php.
CVSS Score
5.3
EPSS Score
0.002
Published
2022-02-09
CVE-2021-42945
A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask.php.
CVSS Score
9.8
EPSS Score
0.007
Published
2021-12-15
CVE-2021-40281
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dl_print.php when registering ordinary users.
CVSS Score
8.8
EPSS Score
0.003
Published
2021-12-09
CVE-2021-40282
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, abd 2021 in dl/dl_download.php. when registering ordinary users.
CVSS Score
8.8
EPSS Score
0.003
Published
2021-12-09
CVE-2021-40279
An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/bad.php.
CVSS Score
7.2
EPSS Score
0.003
Published
2021-12-09
CVE-2021-40280
An SQL Injection vulnerablitly exits in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/dl_sendmail.php.
CVSS Score
7.2
EPSS Score
0.003
Published
2021-12-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved