CVE-2017-13129

EPSS 0.16% · P36 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-13129

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in ZKTeco ZKTime Web 2.0.1.12280 allows remote authenticated users to hijack the authentication of administrators for requests that add administrators by leveraging lack of anti-CSRF tokens.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

ZKTeco ZKTime Web 跨站请求伪造漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

ZKTeco ZKTime Web是美国中控科技（ZKTeco）公司的一套考勤管理系统。 ZKTeco ZKTime Web 2.0.1.12280版本中存在跨站请求伪造漏洞。远程攻击者可利用该漏洞添加管理员。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2017-13129

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-13129

Please Login to view more intelligence information

http://seclists.org/bugtraq/2017/Sep/19mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2017/Sep/38mailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2017-13129

Same Patch Batch · n/a · 2017-09-26 · 25 CVEs total

CVE-2017-14704		Claydip Laravel Airbnb Clone 安全漏洞
CVE-2017-14737		Botan 安全漏洞
CVE-2017-14741		ImageMagick 输入验证漏洞
CVE-2017-14739		ImageMagick 代码问题漏洞
CVE-2017-14001		Digium Asterisk GUI 操作系统命令注入漏洞
CVE-2017-12154		Linux kernel 资料不足漏洞
CVE-2017-1000252		Linux kernel KVM子系统输入验证错误漏洞
CVE-2017-14744		Baidu UEditor 跨站脚本漏洞
CVE-2017-14743		Faleemi FSC-880 SQL注入漏洞
CVE-2017-14703		Cash Back Comparison Script SQL注入漏洞
CVE-2017-5200		SaltStack Salt 安全漏洞
CVE-2017-5192		SaltStack Salt 安全漏洞
CVE-2017-14751		WordPress WP Jobs插件跨站脚本漏洞
CVE-2017-14602		Citrix Systems NetScaler Application Delivery Controller和NetScaler Gateway 安全漏洞
CVE-2015-5070		Wesnoth 信息泄露漏洞
CVE-2015-5069		Wesnoth 信息泄露漏洞
CVE-2015-0874		Ogaki Kyoritsu bank Smartphone Passbook 安全漏洞
CVE-2015-7670		WordPress Support Ticket System SQL注入漏洞
CVE-2015-7391		TestLink 跨站脚本漏洞
CVE-2015-7390		TestLink SQL注入漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2017-13129

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-13129

I. Basic Information for CVE-2017-13129

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-13129

III. Intelligence Information for CVE-2017-13129

Same Patch Batch · n/a · 2017-09-26 · 25 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-13129

Leave a comment