Submit #427069: zzcms 2023 Sensitive information leakageinfo

Titlezzcms 2023 Sensitive information leakage
DescriptionAttackers do not require any access privileges and can directly access sensitive information such as database addresses, database names, accounts, passwords, etc. by accessing 3/qq-connect2.0/API/com/inc.php. In production environments, this is a very fatal vulnerability.
Source⚠️ https://github.com/LvZCh/zzcms2023/issues/1
User
 LVZC (UID 74910)
Submission10/20/2024 08:50 AM (1 Year ago)
Moderation10/23/2024 09:52 AM (3 days later)
StatusAccepted
VulDB entry281559 [ZZCMS 2023 inc.php information disclosure]
Points17

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!