Zentao Vulnerabilities
Comprehensive security vulnerability database for Zentao products
2
0
2
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-2552 | 5.1 | This vulnerability allows an attacker to access and potentially delete files on the server by manipulating a specific file path in the ZenTao application. It affects versions up to 21.7.8, so upgrading to version 21.7.9 is necessary to fix the issue. | zentaozentao | Exploit Available | about 2 months agoFeb 16, 2026 |
| CVE-2026-2551 | 5.3 | This vulnerability allows an attacker to remotely delete files on the ZenTao server by manipulating a specific function in the software. It affects versions up to 21.7.8, and the attack can be executed without needing special access or credentials. | zentaozentao | Exploit Available | about 2 months agoFeb 16, 2026 |
About Zentao Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Zentao products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.