Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

EUVD
EUVDadded 2026/02/26 6:31 p.m.6 views

EUVD-2025-208123

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

9.8CVSS5.9AI score0.02293EPSS
Exploits0References3
NVD
NVDadded 2026/02/26 5:22 p.m.3 views

CVE-2025-50857

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

9.8CVSS0.02293EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/02/26 12:0 a.m.21 views

CVE-2025-50857

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

0.02293EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/26 12:0 a.m.6 views

CVE-2025-50857

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

5.9AI score0.02293EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/02/26 12:0 a.m.4 views

zentaopms 安全漏洞

Zentaopms is an open-source Scrum project management system developed by EasySoft. There are security vulnerabilities in the ZenTaoPMS version from 18.11 to 21.6.beta. These vulnerabilities stem from directory traversal in the /module/ai/control.php module, which could allow arbitrary code to be...

9.8CVSS6AI score0.02293EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/26 12:0 a.m.3 views

PT-2026-22159

Name of the Vulnerable Software and Affected Versions ZenTaoPMS versions 18.11 through 21.6.beta Description ZenTaoPMS versions 18.11 through 21.6.beta contain a Directory Traversal flaw in the /module/ai/control.php file. This allows attackers to execute arbitrary code by uploading a specially...

9.8CVSS6.2AI score0.02293EPSS
Exploits0References6
CVE
CVEadded 2026/02/26 12:0 a.m.9 views

CVE-2025-50857

ZenTaoPMS versions 18.11 through 21.6.beta are affected by a Directory Traversal vulnerability in /module/ai/control.php that allows arbitrary code execution via a crafted file upload. The root cause is a directory traversal flaw in the file-upload handling, enabling an attacker to place or execu...

9.8CVSS5.9AI score0.02293EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-49149

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00375EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-28393

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00426EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/25 3:9 p.m.9 views

CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor=edit=cGhhcjovLy9ldGMvcGFzc3dk=edit of the component Committer. The manipulation of the argument filePath leads to...

6.5CVSS7AI score0.00426EPSS
Exploits1References1
OSV
OSVadded 2025/05/23 3:15 p.m.4 views

CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

9.1CVSS5.5AI score
Exploits0References5
NVD
NVDadded 2025/05/23 3:15 p.m.13 views

CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

9.1CVSS0.00426EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/05/23 2:31 p.m.12 views

CVE-2025-5114 easysoft zentaopms Editor index.php edit deserialization

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

6.5CVSS6.5AI score0.00426EPSS
Exploits1References5
CVE
CVEadded 2025/05/23 2:31 p.m.54 views

CVE-2025-5114

The CVE-2025-5114 entry affects easysoft zentaopms 21.5_20250307. According to PT-2025-22798 (and corroborating entries), the vulnerability resides in the Edit function of the Committer component, specifically the endpoint /index.php?m=editor&f=edit&filePath=…&action=edit, where manipulating the ...

9.1CVSS6.3AI score0.00426EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/05/23 2:31 p.m.13 views

CVE-2025-5114 easysoft zentaopms Editor index.php edit deserialization

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

6.5CVSS0.00426EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/23 4:30 a.m.6 views

CVE-2023-44826

Cross Site Scripting vulnerability in ZenTaoPMS v.18.6 allows a local attacker to obtain sensitive information via a crafted script...

5.4CVSS5.7AI score0.00375EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/05/23 12:0 a.m.2 views

zentaopms 代码问题漏洞

zentaopms is EasySoft open source an agile scrum project management system u200b. A code issue vulnerability exists in zentaopms version 21.520250307, which stems from a misbehavior of the parameter filePath in file/index.php leading to deserialization...

9.1CVSS6.6AI score0.00426EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/05/23 12:0 a.m.4 views

PT-2025-22798

Name of the Vulnerable Software and Affected Versions easysoft zentaopms version 21.5 20250307 Description A critical issue has been discovered that affects the Edit function of the component Committer. The issue is related to the manipulation of the filePath argument in the...

9.1CVSS6.4AI score0.00426EPSS
Exploits1References9
NVD
NVDadded 2023/10/10 3:15 a.m.15 views

CVE-2023-44826

Cross Site Scripting vulnerability in ZenTaoPMS v.18.6 allows a local attacker to obtain sensitive information via a crafted script...

5.4CVSS5AI score0.00375EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/10/10 3:15 a.m.4 views

CVE-2023-44826

Cross Site Scripting vulnerability in ZenTaoPMS v.18.6 allows a local attacker to obtain sensitive information via a crafted script...

5.4CVSS5.8AI score0.00375EPSS
Exploits1References2
Rows per page
Query Builder