Primary

Context

Ergosis Security Systems ZEUS PDKS SQL Injection Vulnerability

Vulnerability

A SQL injection vulnerability has been identified in the ZEUS Personnel Attendance Control System (PDKS) developed by Ergosis Security Systems Computer Industry and Trade Inc. This vulnerability allows for improper neutralization of special elements used in SQL commands, potentially leading to unauthorized database access or manipulation. The issue affects ZEUS PDKS versions prior to 1.0.5.10 and from 1.0.5.10 through 10022026.

Impact

Exploitation of this vulnerability allows cyber attackers to perform SQL injection attacks, potentially leading to unauthorized data access or manipulation within the application's database.

Remediation

The vendor has not yet addressed this vulnerability. Users of the ZEUS PDKS application are advised to switch to an alternative application.

Added: Feb 10, 2026, 3:17 PM

Updated: Feb 10, 2026, 3:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ergosis Security Systems ZEUS PDKS SQL Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating