4 matches found
EUVD-2025-199929
A flaw has been found in ZenTao up to 21.7.6-8564. The affected element is the function file::delete of the file module/file/control.php of the component File Handler. Executing manipulation of the argument fileID can lead to improper privilege management. It is possible to launch the attack...
CVE-2025-13787
A flaw has been found in ZenTao up to 21.7.6-8564. The affected element is the function file::delete of the file module/file/control.php of the component File Handler. Executing manipulation of the argument fileID can lead to improper privilege management. It is possible to launch the attack...
CVE-2025-13787 ZenTao File control.php delete privileges management
A flaw has been found in ZenTao up to 21.7.6-8564. The affected element is the function file::delete of the file module/file/control.php of the component File Handler. Executing manipulation of the argument fileID can lead to improper privilege management. It is possible to launch the attack...
CVE-2025-13787
ZenTao up to 21.7.6-8564 is affected by a privilege-management flaw in the File Handler’s file::delete function (module/file/control.php). Manipulating the fileID parameter can lead to improper privilege handling, with remote exploit potential. All published references indicate upgrading to versi...