CVE-2023-5263 – ZZZCMS Database Backup File save.php restore permission

https://notcve.org/view.php?id=CVE-2023-5263

29 Sep 2023 — A vulnerability was found in ZZZCMS 2.1.7 and classified as critical. Affected by this issue is the function restore of the file /admin/save.php of the component Database Backup File Handler. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/yhy217/zzzcms-vul/issues/1 • CWE-275: Permission Issues •