Vulnerabilities > Zzcms > Zzcms > 2021
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-08 | CVE-2021-46436 | SQL Injection vulnerability in Zzcms 2021 An issue was discovered in ZZCMS 2021. | 6.8 |
| 2022-04-08 | CVE-2021-46437 | Cross-site Scripting vulnerability in Zzcms 2021 An issue was discovered in ZZCMS 2021. | 3.5 |
| 2022-02-09 | CVE-2021-45286 | Path Traversal vulnerability in Zzcms 2021 Directory Traversal vulnerability exists in ZZCMS 2021 via the skin parameter in 1) index.php, 2) bottom.php, and 3) top_index.php. | 5.0 |
| 2021-12-15 | CVE-2021-42945 | SQL Injection vulnerability in Zzcms 2021 A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask.php. | 7.5 |
| 2021-12-09 | CVE-2021-40281 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dl_print.php when registering ordinary users. | 6.5 |
| 2021-12-09 | CVE-2021-40282 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, abd 2021 in dl/dl_download.php. | 6.5 |
| 2021-12-09 | CVE-2021-40279 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/bad.php. | 6.5 |
| 2021-12-09 | CVE-2021-40280 | SQL Injection vulnerability in Zzcms An SQL Injection vulnerablitly exits in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/dl_sendmail.php. | 6.5 |