Cross-site request forgery (CSRF) vulnerability in ZKTeco ZKTime Web 2.0.1.12280 allows remote authenticated users to hijack the authentication of administrators for requests that add administrators by leveraging lack of anti-CSRF tokens.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zkteco zktime web 2.0.1.12280 |