18 matches found
EUVD-2021-25786
Malware in sbrugna...
EUVD-2020-16427
Malware in sbrugna...
CVE-2021-39427
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
CVE-2021-39427
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
CVE-2021-39427
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
Cross site scripting
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
188Jianzhan 跨站脚本漏洞
Liaoning Vtime Technology 188Jianzhan Demon Baba website builder is an open source website builder from China's Liaoning Vtime Technology Liaoning Vtime Technology. A security vulnerability exists in 188Jianzhan version 2.10. An attacker can exploit this vulnerability to execute arbitrary code vi...
PT-2022-10914 · Unknown · 188Jianzhan
Name of the Vulnerable Software and Affected Versions: 188Jianzhan version 2.10 Description: A cross-site scripting issue allows attackers to execute arbitrary code via the username parameter to the "/admin/reg.php" API endpoint. Recommendations: For 188Jianzhan version 2.10, consider disabling t...
CVE-2021-39427
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
CVE-2021-39427
CVE-2021-39427 affects 188Jianzhan version 2.10, with a cross-site scripting flaw in the /admin/reg.php username parameter that enables attackers to execute arbitrary code. The vulnerability is documented across multiple sources (NVD, Red Hat, OSV, etc.). The core issue is insufficient input hand...
CVE-2021-39427
Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php...
Liaoning Vtime Technology 188Jianzhan SQL Injection Vulnerability
Liaoning Vtime Technology 188Jianzhan is an open source website builder from Liaoning Vtime Technology. 188Jianzhan v2.1.0 is vulnerable to SQL injection. The vulnerability is caused by a lack of valid restrictions and escaping of the username parameter in login.php. An attacker could use this...
CVE-2020-23685
SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php...
CVE-2020-23685
SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php...
Sql injection
SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php...
CVE-2020-23685
SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php...
CVE-2020-23685
CVE-2020-23685 affects 188Jianzhan v2.1.0, where SQL injection via the username parameter in login.php permits arbitrary code execution and privilege escalation. Root cause: insufficient input validation/escaping on login.php. Impact: potential compromise of authentication and system integrity. M...
PT-2021-10924 · Unknown · 188Jianzhan
Name of the Vulnerable Software and Affected Versions: 188Jianzhan version 2.1.0 Description: The issue allows attackers to execute arbitrary code and gain escalated privileges. This is achieved via the username parameter to the "login.php" endpoint. Recommendations: For 188Jianzhan version 2.1.0...