CVE-2018-8965

Name of the Vulnerable Software and Affected Versions zzcms version 8.2

Description An issue in zzcms allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter in an action=modify request to the "user/ppsave.php" endpoint. This can be leveraged for database access by deleting install.lock.

Recommendations For zzcms version 8.2, consider restricting access to the "user/ppsave.php" endpoint or disabling the action=modify request until a patch is available to prevent exploitation. Additionally, restrict the use of the oldimg parameter to minimize the risk of arbitrary file deletion.