RSS   Vulnerabilities for 'Zentao'   RSS

2021-08-31
 
CVE-2021-27556

CWE-78
 

 
The Cron job tab in EasyCorp ZenTao 12.5.3 allows remote attackers (who have admin access) to execute arbitrary code by setting the type parameter to System.

 
2021-08-12
 
CVE-2020-28165

CWE-434
 

 
The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function.

 

 >>> Vendor: Easycorp 2 Products
Zentao
Zentao pro


Copyright 2024, cxsecurity.com

 

Back to Top