4 matches found
CVE-2017-14680
ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document...
ZKTime Web Software 2.0 - Improper Access Restrictions Vulnerability
Exploit for windows platform in category web applications Exploit Title: ZKTime Web Software 2.0 - Broken Authentication CVE-ID: CVE-2017-14680 Vendor Homepage: https://www.zkteco.com/product/ZKTimeWeb2.0435.html Vendor of Product: ZKTeco Affected Product Code: ZKTime Web - 2.0.1.12280 Category:...
CVE-2017-14680
CVE-2017-14680 affects ZKTeco’s ZKTime Web 2.0.1.12280. The Red Hat/NVD/CNVD entries describe a vulnerability where remote attackers can obtain sensitive employee metadata by issuing a direct request for a PDF document. This indicates an improper access control/information disclosure flaw in the ...
ZKTime Web Software 2.0 - Improper Access Restrictions
Exploit Title: ZKTime Web Software 2.0 - Broken Authentication CVE-ID: CVE-2017-14680 Vendor Homepage: https://www.zkteco.com/product/ZKTimeWeb2.0435.html Vendor of Product: ZKTeco Affected Product Code: ZKTime Web - 2.0.1.12280 Category: WebApps Author: Arvind V. Author Social: @FindArvind...