CVE-2018-17412: SQL Injection
First published: Thu Mar 07 2019(Updated: )
zzcms v8.3 contains a SQL Injection vulnerability in /user/logincheck.php via an X-Forwarded-For HTTP header.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zzcms Zzcms | =8.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of zzcms v8.3?
The vulnerability ID of zzcms v8.3 is CVE-2018-17412.
What is the severity of CVE-2018-17412?
The severity of CVE-2018-17412 is critical (9.8).
What software version is affected by CVE-2018-17412?
Version 8.3 of Zzcms is affected by CVE-2018-17412.
How does the SQL Injection vulnerability in zzcms v8.3 occur?
The SQL Injection vulnerability in zzcms v8.3 occurs in /user/logincheck.php via an X-Forwarded-For HTTP header.
Is there any fix available for CVE-2018-17412?
There is no known fix available for CVE-2018-17412. Please refer to the provided reference for more information.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zzcms
- canonical/zzcms zzcms
- version/zzcms zzcms/8.3