Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2019-12356

Published: 17/06/2022 Updated: 28/06/2022
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Zzcms

Vulnerability Summary

An issue exists in zzcms 2019. There is a SQL injection Vulnerability in /user/dls_download.php (when the attacker has dls_download authority) via the id parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zzcms zzcms 2019

Github Repositories

https://github.com/brejoc/bscdiff

bscdiff compares bsc, issue and CVE numbers in changelogs

bscdiff bscdiff compares bsc, issue, fate (it's a SUSE thing) and CVE numbers from a source changelog, to a target changelog Missing numbers are then printed with their occurrence in the source changelog Usage $ /bscdiff sourcechanges targetchanges 508: bsc#1098394 -> - Fix fileget_diff regression on 20183 (bsc#1098394) 525: bsc#1098394 -> - Fix filem

References

CWE-89https://github.com/cby234/zzcms/issues/5https://nvd.nist.govhttps://github.com/brejoc/bscdiff
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987buffer overflowCVE-2024-28890CVE-2024-27574CVE-2024-27347CVE-2024-31450privilegeSSTICVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook