Context-Inappropriate Capability
High
- Confidence
- 99% confidence
- Finding
- The script prints a freshly obtained Zentao session ID to stdout immediately after re-login. Session identifiers are bearer tokens; anyone with access to terminal output, logs, chat transcripts, or orchestration traces could reuse the token to impersonate the user and access or modify Zentao data.
