CVE-2024-10290 | ZZCMS 2023 inc.php information disclosure

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability, which was classified as problematic, was found in ZZCMS 2023. This affects an unknown part of the file 3/qq-connect2.0/API/com/inc.php. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2024-10290. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2024-10290 | ZZCMS 2023 inc.php information disclosure

Related Posts

CVE-2024-6707 | Open WebUI 0.1.105 path traversal

CVE-2024-20034 | MediaTek MT8798 Battery memory corruption (ALPS08488849)

CVE-2024-26705 | Linux Kernel up to 6.6.17/6.7.5 parisc btlb_info denial of service (54944f45470a/aa52be552766/913b9d443a01)

CVE-2023-48358 | Unisoc S8000 DRM Driver out-of-bounds write