mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 23:27:33 +02:00
0xMarcio
736 B
736 B
CVE-2017-14680
Description
ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document.
POC
Reference
- http://seclists.org/bugtraq/2017/Sep/20
- http://seclists.org/bugtraq/2017/Sep/20
- http://seclists.org/fulldisclosure/2017/Sep/39
- http://seclists.org/fulldisclosure/2017/Sep/39
Github
No PoCs found on GitHub currently.