CVE-2021-45286

Name of the Vulnerable Software and Affected Versions ZZCMS version 2021

Description A Directory Traversal issue exists via the skin parameter in several PHP files, including "index.php", "bottom.php", and "top index.php". This allows for potential unauthorized access to sensitive files.

Recommendations For ZZCMS version 2021, consider restricting access to the skin parameter in the affected PHP files until a patch is available. As a temporary workaround, restrict access to the vulnerable PHP files "index.php", "bottom.php", and "top index.php" to minimize the risk of exploitation.