CVE-2020-28165

The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function.
References
Configurations

Configuration 1

cpe:2.3:a:easycorp:zentao:*:*:*:*:*:*:*:*

Information

Published : 2021-08-12 12:15

Updated : 2021-08-20 07:38


NVD link : CVE-2020-28165

Mitre link : CVE-2020-28165

Products Affected
No products.
CWE