CVE-2022-38802: Zkteco BioTime < 8.5.3 Build:20200816.447 Incorrect Access Control Exploit
Zkteco BioTime, a popular biometric attendance system, has a critical security vulnerability in versions older than 8.5.3 Build:20200816.447 that allows an
CVE-2022-38801: Zkteco BioTime < 8.5.3 Build:20200816.447 employee session hijack and cookie theft via blind cross-site scripting vulnerability
Summary: In this long read post, we'll go over the exploit details of session hijacking and cookie theft by an employee for administrator users in
CVE-2022-30515 - Unauthorized Access to Employee Photos in ZKTeco BioTime 8.5.4
A new vulnerability, identified as CVE-2022-30515, has emerged in ZKTeco BioTime 8.5.4, a popular time and attendance software. This vulnerability allows an attacker
Episode
00:00:00
00:00:00