Lucene search

Omnidirectional Communication System Security Vulnerabilities

cve

CVE-2021-30173

Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject absolute path into Url parameter and access arbitrary...

6.5CVSS

6.3AI Score

0.001EPSS

2021-05-07 10:15 AM

cve

CVE-2021-30172

Special characters of picture preview page in the Quan-Fang-Wei-Tong-Xun system are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out Reflected XSS (Cross-site scripting) attacks, additionally access and manipulate customer’s...

5.4CVSS

5.1AI Score

0.001EPSS

2021-05-07 10:15 AM