Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2021-44094

Disclosure Date: November 28, 2021 (last updated February 23, 2025)
ZrLog 2.2.2 has a remote command execution vulnerability at plugin download function, it could execute any JAR file
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-44093

Disclosure Date: November 28, 2021 (last updated February 23, 2025)
A Remote Command Execution vulnerability on the background in zrlog 2.2.2, at the upload avatar function, could bypass the original limit, upload the JSP file to get a WebShell
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0