Zcms Project Zcms vulnerabilities
3 known vulnerabilities affecting zcms_project/zcms.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-28521P3CRITICALCVSS 9.8v201702062022-04-26
CVE-2022-28521 [CRITICAL] CVE-2022-28521: ZCMS v20170206 was discovered to contain a file inclusion vulnerability via index.php?m=home&c=home&
ZCMS v20170206 was discovered to contain a file inclusion vulnerability via index.php?m=home&c=home&a=sp_set_config.
nvd
CVE-2015-7347P4MEDIUMCVSS 4.8PoCv1.12017-09-20
CVE-2015-7347 [MEDIUM] CWE-79 CVE-2015-7347: Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1.
Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1.
nvd
CVE-2022-28522P4MEDIUMCVSS 5.4v201702062022-04-26
CVE-2022-28522 [MEDIUM] CWE-79 CVE-2022-28522: ZCMS v20170206 was discovered to contain a stored cross-site scripting (XSS) vulnerability via index
ZCMS v20170206 was discovered to contain a stored cross-site scripting (XSS) vulnerability via index.php?m=home&c=message&a=add.
nvd