VYPR

ZKBio Time

by Zkteco

CVEs (2)

  • CVE-2024-11049Nov 10, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in ZKTeco ZKBio Time 9.0.1. Affected is an unknown function of the file /auth_files/photo/ of the component Image File Handler. The manipulation leads to direct request. It is possible to launch the attack remotely. The…

  • CVE-2022-40472Sep 29, 2022
    risk 0.00cvss epss 0.01

    ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build: 20220721.14829 was discovered to contain a CSV injection vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload injected into the Content text field of the Add New Message…