ZZCMS is a content management system (CMS) from the Zzcms team in China. zzcms is vulnerable to SQL injection, which allows an attacker to use the id parameter in admin/bad.php with a lack of validation for external input SQL statements. An attacker can use the vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
zzcms zzcms | eq | 8.3 | |
zzcms zzcms | eq | 8.2 |