Vulnerabilities > Zentao

DATE CVE VULNERABILITY TITLE RISK
2023-10-27 CVE-2023-46375 Cross-Site Request Forgery (CSRF) vulnerability in Zentao BIZ
ZenTao Biz version 4.1.3 and before is vulnerable to Cross Site Request Forgery (CSRF).
network
low complexity
zentao CWE-352
8.8
8.8
2023-10-27 CVE-2023-46376 Cleartext Storage of Sensitive Information vulnerability in Zentao BIZ
Zentao Biz version 8.7 and before is vulnerable to Information Disclosure.
network
low complexity
zentao CWE-312
7.5
7.5
2023-10-27 CVE-2023-46374 Cross-site Scripting vulnerability in Zentao BIZ
ZenTao Enterprise Edition version 4.1.3 and before is vulnerable to Cross Site Scripting (XSS).
network
low complexity
zentao CWE-79
6.1
6.1
2023-10-27 CVE-2023-46491 Cross-site Scripting vulnerability in Zentao BIZ
ZenTao Biz version 4.1.3 and before has a Cross Site Scripting (XSS) vulnerability in the Version Library.
network
low complexity
zentao CWE-79
6.1
6.1