forget-code/zzcms

forget-code/zzcms

Releases9

Frequency

Last Release about 7 years ago

Stars4

zzcms,站长招商网cms,适用于招商代理型的行业网站,可用于医药招商网站程序源码,服装招商网站程序源码,化妆品招商网站的程序源码等。目前forget-code项目缓存了v7.0~2019的版本，官网最新版下载地址：http://www.zzcms.net/about/6.htm

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-36162 ↗	Jul 3, 2023Monday, 3 July 2023, 21:15	8.8 HIGH	—
Cross Site Request Forgery vulnerability in ZZCMS v.2023 and earlier allows a remote attacker to gain privileges via the add function in adminlist.php.
CVE-2021-45347 ↗	Feb 14, 2022Monday, 14 February 2022, 19:15	7.5 HIGH	5 MEDIUM
An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password.
CVE-2021-43703 ↗	Dec 9, 2021Thursday, 9 December 2021, 17:15	9.8 CRITICAL	7.5 HIGH
An Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console.
CVE-2020-19961 ↗	Oct 14, 2021Thursday, 14 October 2021, 15:15	7.5 HIGH	5 MEDIUM
A SQL injection vulnerability has been discovered in zz cms version 2019 which allows attackers to retrieve sensitive data via the component subzs.php.