CVE-2021-45347

An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt