CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zzcms: >> Zzcms >> 2022 Security Vulnerabilities

CVE-2022-40443

An absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /one/siteinfo.php.

CVSS Score

5.3

EPSS Score

0.289

Published

2022-09-22

CVE-2022-40444

ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? _server.

CVSS Score

5.3

EPSS Score

0.002

Published

2022-09-22

CVE-2022-40446

ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=.

CVSS Score

7.2

EPSS Score

0.001

Published

2022-09-22

CVE-2022-40447

ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojia_list.php.

CVSS Score

7.2

EPSS Score

0.001

Published

2022-09-22

Page 2

Vulnerabilities

Vulnerable Software

Zzcms: >> Zzcms >> 2022 Security Vulnerabilities

Products

Pricing

Contact Us