ZZCMS is a content management system (CMS) from the Zzcms team in China. ZZCMS version 2019 is vulnerable to SQL injection, which stems from the softwareβs lack of effective filtering and escaping of SQL statements. An attacker retrieves sensitive data via the dlid parameter in the cookie on the dl_sendmail.php page.