Full title: ZenTao Pro 8.8.2 Remote Code Execution Exploit 
Category: remote exploits
Platform: windows
This Metasploit module exploits a command injection vulnerability in ZenTao Pro 8.8.2 and earlier versions in order to execute arbitrary commands with SYSTEM privileges. Valid credentials for a ZenTao admin account are required. This module has been successfully tested against ZenTao 8.8.1 and 8.8.2 running on Windows 10 (XAMPP server).

# 0day.today @ http://0day.today/