Vulnerabilities > Zzcms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-17 | CVE-2019-12354 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 7.2 |
| 2022-06-17 | CVE-2019-12355 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 8.8 |
| 2022-06-17 | CVE-2019-12356 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 8.8 |
| 2022-06-17 | CVE-2019-12357 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 7.2 |
| 2022-06-17 | CVE-2019-12358 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 8.8 |
| 2022-06-17 | CVE-2019-12359 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 7.2 |
| 2022-04-08 | CVE-2021-46436 | SQL Injection vulnerability in Zzcms 2021 An issue was discovered in ZZCMS 2021. | 7.2 |
| 2022-02-14 | CVE-2021-45347 | Improper Authentication vulnerability in Zzcms 8.2 An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password. | 7.5 |
| 2021-12-09 | CVE-2021-40281 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dl_print.php when registering ordinary users. | 8.8 |
| 2021-12-09 | CVE-2021-40282 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, abd 2021 in dl/dl_download.php. | 8.8 |