CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zzcms: >> Zzcms >> 201910 Security Vulnerabilities

CVE-2020-21342

Insecure permissions issue in zzcms 201910 via the reset any user password in /one/getpassword.php.

CVSS Score

7.5

EPSS Score

0.001

Published

2021-05-13

CVE-2020-23426

zzcms 201910 contains an access control vulnerability through escalation of privileges in /user/adv.php, which allows an attacker to modify data for further attacks such as CSRF.

CVSS Score

9.8

EPSS Score

0.001

Published

2021-04-08

CVE-2020-23630

A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).

CVSS Score

8.8

EPSS Score

0.003

Published

2021-01-11

Page 1

Vulnerabilities

Vulnerable Software

Zzcms: >> Zzcms >> 201910 Security Vulnerabilities

Products

Pricing

Contact Us