Security Advisory

CVE-2020-28165

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-12 11:01:33

Last updated 2024-08-04 16:33:57

Assigner mitre

State PUBLISHED

Description

The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function.

← Browse all CVEs View on cve.org ↗