Arbitrary File Read Vulnerability in InRouter900 Industrial Router from Johntons

The Johnton-InRouter900 series industrial router is a 4G industrial router. The InRouter900 Industrial Router suffers from an arbitrary file read vulnerability, which originates from the program failing to properly validate user data, and can be exploited by a remote attacker to read arbitrary...

Arbitrary File Deletion Vulnerability in InRouter900 Industrial Router from Johntons

The Johnton-InRouter900 series industrial router is a 4G industrial router. The InRouter900 Industrial Router suffers from an arbitrary file deletion vulnerability, which originates from the program failing to properly validate user data, and can be exploited by a remote attacker to delete...

Command Execution Vulnerability in the InRouter900 Industrial Router from Johnstone (CNVD-2021-10446)

The Johnton-InRouter900 series industrial router is a 4G industrial router. A command execution vulnerability exists in the InRouter900 Industrial Router. The vulnerability stems from the program's failure to properly validate user data and can be exploited by a remote attacker to execute arbitra...

Arbitrary File Deletion Vulnerability in the InRouter900 Industrial Router from Imagicom (CNVD-2021-10443)

The Johnton-InRouter900 series industrial router is a 4G industrial router. The InRouter900 Industrial Router suffers from an arbitrary file deletion vulnerability, which originates from the program failing to properly validate user data, and can be exploited by a remote attacker to delete...

Unspecified Vulnerability in Oracle Database Server (CNVD-2021-08529)

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. An unspecified vulnerability exists in the Oracle Text component of Oracle Database...

Weak password vulnerability in Samsung WLAN APs

Samsung China Investment Co., Ltd. is the headquarters of Samsung Group in China. By the end of 2008, 20 out of more than 30 companies under Samsung have invested in China, including Samsung Electronics, Samsung SDI, Samsung SDS and Samsung Electro-Mechanics. A weak password vulnerability exists ...

Programming Cat Small Office Customized Classes has a dll hijacking vulnerability

Programming Cat Small Office Customized Class is a programming learning software. Programming Cat Small Office Customized Class has a dll hijacking vulnerability. An attacker can exploit the vulnerability to load a malicious dll and execute malicious code...

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Customer...

Oracle Database Server 安全漏洞

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. An unspecified vulnerability exists in the Oracle Text component of Oracle Database...

Mutt Resource Management Error Vulnerability

Mutt is a text-based e-mail client for Unix-like systems developed by Michael Elkins. A security vulnerability exists in Mutt through 2.0.4, which can be exploited by an attacker to cause significant memory consumption using a small e-mail message, and victims may not be able to see e-mail messag...

SQL Injection Vulnerability in Kotto's Fully Intelligent Parking Video Charging System (CNVD-2021-11044)

Xiamen KTO Communication Technology Co., Ltd. is a static transportation system solution provider. A SQL injection vulnerability exists in the KETO Fully Intelligent Parking Video Charging System. An attacker can exploit the vulnerability to obtain sensitive database information...

CVE-2021-22166

An attacker could cause a Prometheus denial of service in GitLab 13.7+ by sending an HTTP request with a malformed method...

SQL Injection Vulnerability in YouYi Cms

Youyi cms is a movie and TV station building system. UE cms has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Cisco Firepower Management Center Cross-Site Scripting Vulnerability (CNVD-2021-05523)

Cisco Firepower Management Center is the nerve center for managing Cisco network security solutions, improving the effectiveness of Cisco network security solutions by providing centralized, integrated, and simplified management. A stored cross-site scripting vulnerability exists in the Web...

Juniper Networks Junos OS MX Security Vulnerability

Juniper Networks Junos OS MX is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Junos OS MX that could be exploited by an attacker to cause a denial o...

Microsoft Word Remote Code Execution Vulnerability (CNVD-2021-11031)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A remote code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute code on the target host...

SQL Injection Vulnerability in Heybbs us***.php File

Heybbs is a front-end based on bootstrap + js + css, back-end php + mysql development of community programs. A SQL injection vulnerability exists in the Heybbs us.php file. An attacker can exploit the vulnerability to obtain sensitive database information...

北京坤豆 Mubu 授权问题漏洞

Mubu is a platform for online writing from Mubu, a company based in Beijing, China. An authorization issue vulnerability exists in Mubu version 2.2.1, which stems from its failure to strictly limit user privileges and can be exploited by a local attacker to execute system commands...

Command execution vulnerability in FitCloud app

FitCloud app is online smart bracelet. A command execution vulnerability exists in the FitCloud app. An attacker can exploit the vulnerability to execute commands on the server...

SQL Injection Vulnerability in YouYi cms yy***_dd***.php File

Youyi cms is a movie and TV station building system. A SQL injection vulnerability exists in the YouYi cms yydd.php file. An attacker can exploit the vulnerability to obtain sensitive information from the database...