VYPR

Maven package

org.zkoss.zk/zk

pkg:maven/org.zkoss.zk/zk

Vulnerabilities (1)

  • CVE-2022-36537KEVAug 26, 2022
    affected < 8.6.4.2fixed 8.6.4.2

    ZK Framework v9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2 and 8.6.4.1 allows attackers to access sensitive information via a crafted POST request sent to the component AuUploader.