3 matches found
CVE-2022-25323
ZEROF Web Server 2.0 allows /admin.back XSS.
CVE-2022-25322
ZEROF Web Server 2.0 allows /HandleEvent SQL Injection.
CVE-2021-30175
ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page.