CVE-2020-7361

CRITICAL

EasyCorp ZenTao Pro < 8.8.2 - Authenticated OS Command Injection via Repo Create Path Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-7361. PoCs published by Daniel Monzón, Melvin Boers, Erik Wynter, including Metasploit module exploits/windows/http/zentao_pro_rce.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in ZenTao Pro 8.8.2 and earlier versions via the 'Repo Create' function, allowing arbitrary command execution with SYSTEM privileges. It authenticates using provided credentials and injects commands into the 'path' parameter.

Description

The EasyCorp ZenTao Pro application suffers from an OS command injection vulnerability in its '/pro/repo-create.html' component. After authenticating to the ZenTao dashboard, attackers may construct and send arbitrary OS commands via the POST parameter 'path', and those commands will run in an elevated SYSTEM context on the underlying Windows operating system.

Exploits (1)

metasploit WORKING POC EXCELLENT

by Daniel Monzón, Melvin Boers, Erik Wynter · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/zentao_pro_rce.rb

View Code ZIP pw:eip

This Metasploit module exploits a command injection vulnerability in ZenTao Pro 8.8.2 and earlier versions via the 'Repo Create' function, allowing arbitrary command execution with SYSTEM privileges. It authenticates using provided credentials and injects commands into the 'path' parameter.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ZenTao Pro <= 8.8.2

Auth required

Prerequisites: Valid admin credentials for ZenTao · Network access to the target application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://github.com/rapid7/metasploit-framework/pull/13828

Scores

CVSS v3 9.6

EPSS 0.1722

EPSS Percentile 96.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Details

CWE

CWE-78

Status published

Products (1)

easycorp/zentao_pro < 8.8.2

Published Aug 06, 2020

Tracked Since Feb 18, 2026