2020-08-25 21:46:12
mitre
PUBLISHED
zrlog v2.1.0 has a vulnerability with the permission check. If admin account is logged in, other unauthorized users can download the database backup file directly.