13 matches found
ACEware Systems ACEweb Online Portal Cross-Site Scripting Vulnerability
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems, Inc. A cross-site scripting vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065, which originates in person. The txtNmName1 parameter in awp lacks a validation filter...
CVE-2022-24241
ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name vulnerability via the txtFilePath parameter in attachments.awp...
CVE-2022-24240
ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp...
CVE-2022-24239
ACEweb Online Portal 3.5.065 was discovered to contain an unrestricted file upload vulnerability via attachments.awp...
CVE-2022-24239
ACEweb Online Portal 3.5.065 was discovered to contain an unrestricted file upload vulnerability via attachments.awp...
CVE-2022-24238
ACEweb Online Portal 3.5.065 was discovered to contain a cross-site scripting XSS vulnerability via the txtNmName1 parameter in person.awp...
ACEware Systems ACEweb Online Portal SQL注入漏洞
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems, Inc. A SQL injection vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065, which stems from The conditional parameter in showchedule.awp lacks validation for external...
ACEware Systems ACEweb Online Portal 代码问题漏洞
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems. A security vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065. An attacker could use this vulnerability to trick a vulnerable server into disclosing the username and...
ACEware Systems ACEweb Online Portal 代码问题漏洞
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems. A security vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065. An attacker has exploited this vulnerability to create an unrestricted file upload vulnerability via...
ACEware Systems ACEweb Online Portal 安全漏洞
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems, Inc. A security vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065, which stems from the discovery that ACEweb Online Portal 3.5.065 contains an external controlled...
ACEware Systems ACEweb Online Portal 跨站脚本漏洞
ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems, Inc. A cross-site scripting vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065, which originates in person. The txtNmName1 parameter in awp lacks a validation filter...
CVE-2022-24241
ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name vulnerability via the txtFilePath parameter in attachments.awp...
CVE-2022-24238
CVE-2022-24238 affects ACEweb Online Portal 3.5.065. The vulnerability is a Cross-Site Scripting (XSS) issue in the txtNmName1 parameter of awp/person.awp, originating from insufficient input/output validation. Impact described in sources: client-side JavaScript execution could be possible. The C...