GHSA-6278-2Q4M-CMF3 ZK Framework vulnerable to malicious POST

ZK Framework version 9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2 and 8.6.4.1 allows attackers to access sensitive information via a crafted POST request sent to the component AuUploader...

ZK 安全漏洞

ZK is a highly productive open source Java framework from ZK for building amazing enterprise web and mobile applications. A security vulnerability exists in ZK Framework versions v9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2, and 8.6.4.1. An attacker could use this vulnerability to access sensitive informati...

PT-2022-6454 · Unknown · Zk Framework

Name of the Vulnerable Software and Affected Versions: ZK Framework versions 8.6.4.1, 9.0.1.2, 9.5.1.3, 9.6.0.1, 9.6.1 Description: The issue is related to the AuUploader component of the ZK Framework, which allows attackers to access sensitive information via a crafted POST request. This can...