CVE-2020-22533
Root-cause: Cross-site scripting in Zentao via the lang parameter leads to arbitrary code execution. The CVE-2020-22533 entry covers Zentao’s XSS with a 6.1 CVSS (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N). Evidence of exploitation exists (POC indicated in the exploitation field of a connected enrichme...