CVE-2024-7927 | ZZCMS 2023 class.php skin[] path traversal

Inserito da Angelo Barbosa | Ago 19, 2024 | CVE

A vulnerability classified as critical was found in ZZCMS 2023. Affected by this vulnerability is an unknown functionality of the file /admin/class.php?dowhat=modifyclass. The manipulation of the argument skin[] leads to path traversal.

This vulnerability is known as CVE-2024-7927. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-7927 | ZZCMS 2023 class.php skin[] path traversal

Post correlati

CVE-2023-52655 | Linux Kernel up to 5.4.264/5.10.204/5.15.143/6.1.68/6.6.7 aqc111 skb_trim wrap-around

CVE-2023-41708 | Open-Xchange OX App Suite up to 7.10.6-rev38 App Loader cross site scripting

VDB-263595 | Campcodes Complete Web-Based School Management System 1.0 show_friend_request.php my_index cross site scripting

CVE-2024-7303 | itsourcecode Online Blood Bank Management System 1.0 Send Blood Request Page /request.php Address/bloodgroup cross site scripting