Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Zfaka
(Zfaka_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-01-28 | CVE-2022-22294 | A SQL injection vulnerability exists in ZFAKA<=1.43 which an attacker can use to complete SQL injection in the foreground and add a background administrator account. | Zfaka | 9.8 | ||
| 2022-02-21 | CVE-2022-24553 | An issue was found in Zfaka <= 1.4.5. The verification of the background file upload function check is not strict, resulting in remote command execution. | Zfaka | 9.8 |