{"vulnerability": "CVE-2019-1235", "sightings": [{"uuid": "0ba9100a-d22a-4636-83ea-f595cf606d7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12358", "type": "seen", "source": "https://t.me/cibsecurity/44729", "content": "\u203c CVE-2019-12358 \u203c\n\nAn issue was discovered in zzcms 2019. There is a SQL injection Vulnerability in /dl/dl_sendsms.php (when the attacker has dls_print authority) via a dlid cookie.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-17T16:23:40.000000Z"}, {"uuid": "819c10ce-9ea3-4c46-845a-c6e562905ae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12354", "type": "seen", "source": "https://t.me/cibsecurity/44716", "content": "\u203c CVE-2019-12354 \u203c\n\nAn issue was discovered in zzcms 2019. There is a SQL injection Vulnerability in /admin/showbad.php (when the attacker has admin authority) via the id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-17T16:23:25.000000Z"}, {"uuid": "7af75387-aad6-4723-beea-fff0998597bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12359", "type": "seen", "source": "https://t.me/cibsecurity/44728", "content": "\u203c CVE-2019-12359 \u203c\n\nAn issue was discovered in zzcms 2019. There is a SQL injection Vulnerability in /admin/ztliuyan_sendmail.php (when the attacker has admin authority) via the id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-17T16:23:39.000000Z"}, {"uuid": "fc14c71d-3cfd-476a-8e37-bf3a75cd2419", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12357", "type": "seen", "source": "https://t.me/cibsecurity/44718", "content": "\u203c CVE-2019-12357 \u203c\n\nAn issue was discovered in zzcms 2019. There is a SQL injection Vulnerability in /admin/deluser.php (when the attacker has admin authority) via the id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-17T16:23:27.000000Z"}, {"uuid": "b39fac20-0a45-4a85-a3eb-48902314fe19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12350", "type": "seen", "source": "https://t.me/cibsecurity/43692", "content": "\u203c CVE-2019-12350 \u203c\n\nAn issue was discovered in zzcms 2019. SQL Injection exists in dl/dl_download.php via an id parameter value with a trailing comma.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:35:50.000000Z"}]}