SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pm_sendmail parameter in csz_model.php.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-08-11
There is a front-end sql injection vulnerability in cszcms 1.2.9 via cszcms/controllers/Member.php#viewUser
CVSS Score
9.8
EPSS Score
0.002
Published
2022-01-27