4 matches found
CVE-2025-34508
A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15-7 and prior. This could allow a remote, authenticated attacker to retrieve the files of other ZendTo users, retrieve files on the host system, or cause a denial of service...
CVE-2025-34508 ZendTo < 6.15-8 Path Traversal
A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15-7 and prior. This could allow a remote, authenticated attacker to retrieve the files of other ZendTo users, retrieve files on the host system, or cause a denial of service...
CVE-2025-34508
CVE-2025-34508 concerns ZendTo. The vulnerability is a path traversal in the file dropoff feature affecting ZendTo versions 6.15-7 and earlier. It could allow a remote, authenticated attacker to access other ZendTo users’ files, retrieve host-system files, or cause a denial of service. The root c...
CVE-2025-34508
creationtimestamp| type| source ---|---|--- 2025-06-17 13:40:36+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114698986099688206 2025-06-17 14:51:27+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114699264803968519 2025-06-17 15:13:14+00:00| seen|...