漏洞描述
zz是zj1983个人开发者的一个电商平台。 zz 2024-8及之前版本存在注入漏洞,该漏洞源于SQL注入,可能导致远程代码执行。
zz 注入漏洞
PoC代码
暂无相关漏洞推荐
- zzcms-zsmanage-sqli: ZzCMS zsmanage sqli
- ZZZCMS /search/ 代码执行漏洞(CVE-2019-9041)
- POC CVE-2016-1000154: WordPress WHIZZ <=1.0.7 - Cross-Site Scripting
- POC CVE-2019-9041: ZZZCMS 1.6.1 - Remote Code Execution
- POC CVE-2020-20285: ZZcms - Cross-Site Scripting
- POC CVE-2022-23881: ZZZCMS zzzphp 2.1.0 - Remote Code Execution
- POC CVE-2022-40443: ZZCMS 2022 - Path Information Disclosure
- POC linux-lfi-fuzz: Local File Inclusion - Linux
- POC buzzfeed-mango-csp-bypass: Content-Security-Policy Bypass - BuzzFeed Mango
- POC zzsk-wms-getdatabase-disclosure: 郑州时空-TMS运输管理系统 GetDataBase 信息泄露
- POC zzzcms-parser-search-rce: ZZZCMS parserSearch 远程命令执行漏洞
- POC CVE-2021-30203: Dzzoffice 2.02.1 - Cross-Site Scripting
- POC dzzoffice-install: DzzOffice Installation Panel - Detect