10 matches found
EUVD-2022-52376
Malicious code in bioql PyPI...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
Authentication flaw
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is affected by an authentication bypass issue where folders containing employee photos are not required to authenticate, enabling an attacker to view photos via filename enumeration. This vulnerability is corroborated by multiple sources in the connected set (including NVD an...
ZKTeco ZKBio Time 访问控制错误漏洞
ZKTeco ZKBio Time is a powerful web-based time and attendance management software from the Chinese company ZKTeco. A security vulnerability exists in ZKTeco ZKBio Time version 8.5.4, which stems from a lack of authentication of folders containing employee photos...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
PT-2022-20152 · Zkteco · Zkteco Biotime
Name of the Vulnerable Software and Affected Versions: ZKTeco BioTime version 8.5.4 Description: The issue is related to missing authentication on folders containing employee photos. This allows an attacker to view the photos through filename enumeration. Recommendations: For ZKTeco BioTime versi...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...