CVEDB API

Vulnerabilities

Vulnerable Software

Zzcms: >> Zzcms >> 8.3 Security Vulnerabilities

CVE-2018-17413

XSS exists in zzcms v8.3 via the /uploadimg_form.php noshuiyin parameter.

CVSS Score

6.1

EPSS Score

0.002

Published

2019-03-07

CVE-2018-17414

zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter.

CVSS Score

8.8

EPSS Score

0.002

Published

2019-03-07

CVE-2018-17415

zzcms V8.3 has a SQL injection in /user/zs_elite.php via the id parameter.

CVSS Score

8.8

EPSS Score

0.002

Published

2019-03-07

CVE-2018-17416

A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.

CVSS Score

7.2

EPSS Score

0.003

Published

2019-03-07

CVE-2018-18786

An issue was discovered in zzcms 8.3. SQL Injection exists in ajax/zs.php via a pxzs cookie.

CVSS Score

9.8

EPSS Score

0.003

Published

2018-10-29

CVE-2018-18787

An issue was discovered in zzcms 8.3. SQL Injection exists in zs/zs.php via a pxzs cookie.

CVSS Score

9.8

EPSS Score

0.003

Published

2018-10-29

CVE-2018-18788

An issue was discovered in zzcms 8.3. SQL Injection exists in admin/classmanage.php via the tablename parameter. (This needs an admin user login.)

CVSS Score

7.2

EPSS Score

0.003

Published

2018-10-29

CVE-2018-18789

An issue was discovered in zzcms 8.3. SQL Injection exists in zt/top.php via a Host HTTP header to zt/news.php.

CVSS Score

9.8

EPSS Score

0.003

Published

2018-10-29

CVE-2018-18790

An issue was discovered in zzcms 8.3. SQL Injection exists in admin/special_add.php via a zxbigclassid cookie. (This needs an admin user login.)

CVSS Score

7.2

EPSS Score

0.003

Published

2018-10-29

CVE-2018-18791

An issue was discovered in zzcms 8.3. SQL Injection exists in zs/search.php via a pxzs cookie.

CVSS Score

9.8

EPSS Score

0.003

Published

2018-10-29

Prev Next

Page 3

Vulnerabilities

Vulnerable Software

Zzcms: >> Zzcms >> 8.3 Security Vulnerabilities

Products

Pricing

Contact Us