Zentao Demo15 is vulnerable to Directory Traversal. The impact is: obtain sensitive information (remote). The component is: URL : view-source:https://demo15.zentao.pm/user-login.html/zentao/index.php?mode=getconfig.
References
Link | Resource |
---|---|
http://zentao.com | Product |
https://demo15.zentao.pm/user-login.html/zentao/index.php?mode=getconfig | Exploit Third Party Advisory |
https://medium.com/%40sc0p3hacker/cve-2022-37700-directory-transversal-in-zentao-easy-soft-alm-2573c1f0fc21 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-19T15:58:51
Updated: 2022-09-19T15:58:51
Reserved: 2022-08-08T00:00:00
Link: CVE-2022-37700
JSON object: View
NVD Information
Status : Modified
Published: 2022-09-19T16:15:11.350
Modified: 2023-11-07T03:49:52.847
Link: CVE-2022-37700
JSON object: View
Redhat Information
No data.
CWE