Npubaishao

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A SQL injection issue was discovered in the /q/show.php endpoint. This issue allows for potential SQL injection attacks. **Recommendations** For ZZCMS version 2023, consider restricting access to the /q/show.php endpoint until a patch is available. As a temporary workaround, avoid using user-supplied input in the SQL queries to minimize the risk of exploitation.