← Back to CVE List

CVE-2020-28165

Published: 2021-08-12T12:15Z
Last Modified: 2024-11-21T05:22Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt