CVE-2023-36162

Published July 3rd, 2023

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Cross Site Request Forgery vulnerability in ZZCMS v.2023 and earlier allows a remote attacker to gain privileges via the add function in adminlist.php.

forget-code/zzcms

zzcms,站长招商网cms,适用于招商代理型的行业网站,可用于医药招商网站程序源码,服装招商网站程序源码,化妆品招商网站的程序源码等。目前forget-code项目缓存了v7.0~2019的版本，官网最新版下载地址：http://www.zzcms.net/about/6.htm

GitHub