Every CVE whose affected-product data names Zzzcms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-45554 — CVSS 9.8 (critical): File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker to execute arbitrary code via modification of the imageext parameter…
CVE-2020-19682 — CVSS 8.8 (high): A Cross Site Request Forgery (CSRF) vulnerability exits in ZZZCMS V1.7.1 via the save_user funciton in save.php.
CVE-2023-45555 — CVSS 7.8 (high): File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker to execute arbitrary code via a crafted file to the down_url function…
CVE-2023-5263 — CVSS 6.3 (medium): A vulnerability was found in ZZZCMS 2.1.7 and classified as critical. Affected by this issue is the function restore of the file…
CVE-2023-5582 — CVSS 3.5 (low): A vulnerability, which was classified as problematic, has been found in ZZZCMS 2.2.0. This issue affects some unknown processing of the…