### [CVE-2021-40281](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40281)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)

### Description

An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dl_print.php when registering ordinary users.

### POC

#### Reference
- https://gist.github.com/aaaahuia/583b062b686cdff27554e3c6fa5ac94e

#### Github
- https://github.com/superlink996/chunqiuyunjingbachang