A vulnerability has been found in ZenTao Community Edition, Biz and Max and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /upgrade/control.php of the component TXT File Handler. The manipulation leads to unrestricted upload.
This vulnerability is known as CVE-2024-24202. Access to the local network is required for this attack to succeed. There is no exploit available.