fax77829yz/CSZ_CMS-exploit

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-29084 ↗	Sep 23, 2025Tuesday, 23 September 2025, 18:15	6.5 MEDIUM	—
SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the execSqlFile function in the Upgrade.php file.
CVE-2025-29083 ↗	Sep 23, 2025Tuesday, 23 September 2025, 18:15	6.5 MEDIUM	—
SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the execSqlFile function in the Plugin_Manager.php file.