l3s10n/ZenTaoPMS_SqlInjection

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-47745 ↗	Jan 19, 2023Thursday, 19 January 2023, 18:15	8.8 HIGH	—
ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can complete SQL injection by constructing a special request and sending it to function importNotice.