Vulnerabilities > Zzcms > Zzcms > Low

DATE CVE VULNERABILITY TITLE RISK
2022-04-08 CVE-2021-46437 Cross-site Scripting vulnerability in Zzcms 2021
An issue was discovered in ZZCMS 2021.
network
zzcms CWE-79
3.5
2021-06-03 CVE-2020-35973 Cross-site Scripting vulnerability in Zzcms 2020
An issue was discovered in zzcms2020.
network
zzcms CWE-79
3.5
2020-12-18 CVE-2020-20285 Cross-site Scripting vulnerability in Zzcms 2019
There is a XSS in the user login page in zzcms 2019.
network
zzcms CWE-79
3.5
2019-02-24 CVE-2019-9078 Cross-site Scripting vulnerability in Zzcms 2019
zzcms 2019 has XSS via an arbitrary user/ask.php?do=modify parameter because inc/stopsqlin.php does not block a mixed-case string such as sCrIpT.
network
zzcms CWE-79
3.5
2018-08-06 CVE-2018-14962 Cross-site Scripting vulnerability in Zzcms 8.3.
zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php.
network
zzcms CWE-79
3.5