Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | ZenTao Pro 8.8.2 Remote Code Execution Exploit | 22 Jul 202000:00 | – | zdt |
 | CVE-2020-7361 | 22 Jul 202014:53 | – | circl |
 | EasyCorp ZenTao Pro Command Injection Vulnerability | 24 Jul 202000:00 | – | cnvd |
 | Easycorp Zentao Pro Command Injection (CVE-2020-7361) | 2 Sep 202000:00 | – | checkpoint_advisories |
 | CVE-2020-7361 ZenTao Pro Command Injection | 6 Aug 202015:45 | – | cvelist |
 | ZenTao Pro 8.8.2 Remote Code Execution | 22 Jul 202017:41 | – | metasploit |
 | CVE-2020-7361 | 6 Aug 202016:15 | – | nvd |
 | ZenTao Pro 8.8.2 Remote Code Execution | 22 Jul 202000:00 | – | packetstorm |
 | Command injection | 6 Aug 202016:15 | – | prion |
Node
[
{
"product": "ZenTao Pro",
"vendor": "EasyCorp",
"versions": [
{
"lessThanOrEqual": "8.8.2",
"status": "affected",
"version": "8.8.2",
"versionType": "custom"
}
]
}
]| Source | Link |
|---|---|
| github | www.github.com/rapid7/metasploit-framework/pull/13828 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| path | request body | /pro/repo-create.html | OS command injection via the vulnerable path parameter in ZenTao Pro repo-create endpoint leading to remote commands execution | CWE-78 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 Nov 2024 05:37Current
9High risk
Vulners AI Score9
CVSS 3.18.8 - 9.6
CVSS 29
EPSS0.35969