CVE-2018-17414: SQL Injection
First published: Thu Mar 07 2019(Updated: )
zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zzcms Zzcms | =8.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for zzcms v8.3?
The vulnerability ID for zzcms v8.3 is CVE-2018-17414.
What is the severity of CVE-2018-17414?
The severity of CVE-2018-17414 is high with a severity value of 8.8.
Which component of zzcms v8.3 is affected by CVE-2018-17414?
CVE-2018-17414 affects the /user/jobmanage.php component of zzcms v8.3.
How does the SQL injection occur in zzcms v8.3?
The SQL injection in zzcms v8.3 occurs through the bigclass parameter in /user/jobmanage.php.
Is there a fix available for CVE-2018-17414 in zzcms v8.3?
It is recommended to apply the fix provided by the software vendor or upgrade to a patched version of zzcms v8.3 to address CVE-2018-17414.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/zzcms
- canonical/zzcms zzcms
- version/zzcms zzcms/8.3