Skip to main content

Biz

4 CVEs product

Monthly

CVE-2023-46376 HIGH POC This Week

Zentao Biz version 8.7 and before is vulnerable to Information Disclosure. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Biz
NVD
CVSS 3.1
7.5
EPSS
0.4%
CVE-2023-46375 HIGH POC This Week

ZenTao Biz version 4.1.3 and before is vulnerable to Cross Site Request Forgery (CSRF). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Biz
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-46491 MEDIUM POC This Month

ZenTao Biz version 4.1.3 and before has a Cross Site Scripting (XSS) vulnerability in the Version Library. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Biz
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-46374 MEDIUM POC This Month

ZenTao Enterprise Edition version 4.1.3 and before is vulnerable to Cross Site Scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Biz
NVD
CVSS 3.1
6.1
EPSS
0.4%
EPSS 0% CVSS 7.5
HIGH POC This Week

Zentao Biz version 8.7 and before is vulnerable to Information Disclosure. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Biz
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

ZenTao Biz version 4.1.3 and before is vulnerable to Cross Site Request Forgery (CSRF). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Biz
NVD
EPSS 0% CVSS 6.1
MEDIUM POC This Month

ZenTao Biz version 4.1.3 and before has a Cross Site Scripting (XSS) vulnerability in the Version Library. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Biz
NVD
EPSS 0% CVSS 6.1
MEDIUM POC This Month

ZenTao Enterprise Edition version 4.1.3 and before is vulnerable to Cross Site Scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Biz
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy