Vulnerabilities > Easycorp > Zentao > 18.8

DATE CVE VULNERABILITY TITLE RISK
2024-02-08 CVE-2024-24216 Command Injection vulnerability in Easycorp Zentao
Zentao v18.0 to v18.10 was discovered to contain a remote code execution (RCE) vulnerability via the checkConnection method of /app/zentao/module/repo/model.php.
network
low complexity
easycorp CWE-77
critical
 9.8
9.8
2023-11-30 CVE-2023-6439 Unspecified vulnerability in Easycorp Zentao 18.8
A vulnerability classified as problematic was found in ZenTao PMS 18.8.
network
low complexity
easycorp
6.1
6.1