Vulnerabilities > Zcms Project

DATE CVE VULNERABILITY TITLE RISK
2022-04-26 CVE-2022-28521 Unspecified vulnerability in Zcms Project Zcms 20170206
ZCMS v20170206 was discovered to contain a file inclusion vulnerability via index.php?m=home&c=home&a=sp_set_config.
network
low complexity
zcms-project
critical
9.8
2022-04-26 CVE-2022-28522 Cross-site Scripting vulnerability in Zcms Project Zcms 20170206
ZCMS v20170206 was discovered to contain a stored cross-site scripting (XSS) vulnerability via index.php?m=home&c=message&a=add.
network
low complexity
zcms-project CWE-79
5.4
2017-09-20 CVE-2015-7347 Cross-site Scripting vulnerability in Zcms Project Zcms 1.1
Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1.
network
low complexity
zcms-project CWE-79
4.8
2017-06-07 CVE-2015-7346 SQL Injection vulnerability in Zcms Project Zcms 1.1
SQL injection vulnerability in ZCMS 1.1.
network
low complexity
zcms-project CWE-89
critical
9.8