CVE-2024-24202

Published: 2024-02-08T05:15Z

Last Modified: 2024-11-21T08:59Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An arbitrary file upload vulnerability in /upgrade/control.php of ZenTao Community Edition v18.10, ZenTao Biz v8.10, and ZenTao Max v4.10 allows attackers to execute arbitrary code via uploading a crafted .txt file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt