Critical SQL Injection Vulnerability in zz CMS 2019: Exploiting subzs.php to Access Sensitive Data

Critical SQL Injection Vulnerability in zz CMS 2019: Exploiting subzs.php to Access Sensitive Data

CVE-2020-19961 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A SQL injection vulnerability has been discovered in zz cms version 2019 which allows attackers to retrieve sensitive data via the component subzs.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.