Vulnerabilities > Zzcms > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-08 | CVE-2021-46437 | Cross-site Scripting vulnerability in Zzcms 2021 An issue was discovered in ZZCMS 2021. | 3.5 |
| 2021-06-03 | CVE-2020-35973 | Cross-site Scripting vulnerability in Zzcms 2020 An issue was discovered in zzcms2020. | 3.5 |
| 2020-12-18 | CVE-2020-20285 | Cross-site Scripting vulnerability in Zzcms 2019 There is a XSS in the user login page in zzcms 2019. | 3.5 |
| 2019-02-24 | CVE-2019-9078 | Cross-site Scripting vulnerability in Zzcms 2019 zzcms 2019 has XSS via an arbitrary user/ask.php?do=modify parameter because inc/stopsqlin.php does not block a mixed-case string such as sCrIpT. | 3.5 |
| 2018-08-06 | CVE-2018-14962 | Cross-site Scripting vulnerability in Zzcms 8.3. zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php. | 3.5 |