SQL Injection Vulnerability in zzcms by zzcms Team
CVE-2019-12359
7.2HIGH
What is CVE-2019-12359?
A SQL injection vulnerability has been identified in zzcms 2019, specifically within the /admin/ztliuyan_sendmail.php script. This vulnerability allows an attacker with administrative privileges to manipulate SQL queries through the 'id' parameter, potentially leading to unauthorized data access or alteration. It is crucial for zzcms users to implement necessary updates and mitigations to secure their applications against exploitation.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved