We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
ZZCMS 2023 contains a vulnerability in the captcha reuse logic located in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation attempt. As a result, an attacker can exploit this flaw by repeatedly submitting the same incorrect captcha response, allowing them to capture the correct captcha value through error messages.
Reserved 2024-08-21 | Published 2024-09-04 | Updated 2024-09-04 | Assigner mitregithub.com/.../blob/main/CVE-2024-44821 ZZCMS2023 验证码复用逻辑漏洞.md
Support options