Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An arbitrary file upload vulnerability in /upgrade/control.php of ZenTao Community Edition v18.10, ZenTao Biz v8.10, and ZenTao Max v4.10 allows attackers to execute arbitrary code via uploading a crafted .txt file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nature Easy Soft Network Technology ZenTao 代码问题漏洞
Vulnerability Description
Nature Easy Soft Network Technology ZenTao是中国易软天创网络科技(Nature Easy Soft Network Technology)公司的一套开源项目管理软件。该软件包括产品管理、项目管理、质量管理和文档管理等功能。 ZenTao Community Edition v18.10版本、ZenTao Biz v8.10版本和ZenTao Max v4.10版本存在代码问题漏洞,该漏洞源于存在任意文件上传漏洞,攻击者可以通过上传特制的txt文件来执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A