Uniong WebITR 安全漏洞

Uniong WebITR is an online time and attendance system from China Kaifa Uniong. A security vulnerability exists in Uniong WebITR that stems from vulnerability to absolute path traversal attacks, which could lead to a remote attacker downloading arbitrary system files...

GFI MailEssentials 安全漏洞

GFI MailEssentials is an email security suite from GFI that includes 14 anti-spam filters, 3 anti-virus engines, and malware scanning. A security vulnerability exists in GFI MailEssentials versions prior to 21.8, which stems from improper handling of XML external entities and could result in...

ServiSign 路径遍历漏洞

Changingtec ServiSign is a system from Changingtec Taiwan, China. The system provides a cross-platform solution for digital signatures and verification. A security vulnerability exists in ServiSign. An attacker could exploit the vulnerability to bypass authentication and access arbitrary system...

Flowring Technology Agentflow BPM 路径遍历漏洞

Flowring Technology Agentflow BPM is an enterprise process management system from Flowring Technology, a Chinese company. A path traversal vulnerability exists in Flowring Technology Agentflow BPM, which arises from a file download feature that allows an unauthenticated, remote attacker to bypass...