An issue was discovered in zzcms 2019. There is a SQL...
High severity
Unreviewed
Published
Jun 18, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Jun 17, 2022
Published to the GitHub Advisory Database
Jun 18, 2022
Last updated
Jan 27, 2023
An issue was discovered in zzcms 2019. There is a SQL injection Vulnerability in /user/dls_download.php (when the attacker has dls_download authority) via the id parameter.
References