Cross Site Scripting vulnerability in ZZCMS v.2023 and before allows a remote attacker to obtain sensitive information via the HTTP_Referer header of the caina.php component.

Related CVEs

CVE-2024-44818

Key Information

GHSA ID

GHSA-39jm-vmh3-fp62

Published

September 4, 2024 6:30 PM

Last Modified

September 4, 2024 6:30 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: June 16, 2025 6:25 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.