Vulnerabilities > Zzcms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-07 | CVE-2018-17412 | SQL Injection vulnerability in Zzcms 8.3 zzcms v8.3 contains a SQL Injection vulnerability in /user/logincheck.php via an X-Forwarded-For HTTP header. | 7.5 |
| 2018-10-29 | CVE-2018-18792 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-10-29 | CVE-2018-18791 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-10-29 | CVE-2018-18789 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-10-29 | CVE-2018-18787 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-10-29 | CVE-2018-18786 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-10-29 | CVE-2018-18785 | SQL Injection vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-09-17 | CVE-2018-17136 | SQL Injection vulnerability in Zzcms 8.3 zzcms 8.3 contains a SQL Injection vulnerability in /user/check.php via a Client-Ip HTTP header. | 7.5 |
| 2018-08-20 | CVE-2018-1000653 | SQL Injection vulnerability in Zzcms zzcms version 8.3 and earlier contains a SQL Injection vulnerability in zt/top.php line 5 that can result in could be attacked by sql injection in zzcms in nginx. | 7.5 |
| 2018-07-03 | CVE-2018-13116 | SQL Injection vulnerability in Zzcms 8.3. /user/del.php in zzcms 8.3 allows SQL injection via the tablename parameter after leveraging use of the zzcms_ask table. | 7.5 |