162 matches found
Ruckus Wireless多款产品 安全漏洞
Ruckus Wireless SmartZone is a high-performance WLAN controller from Ruckus Technologies. Several products of Ruckus Wireless have security vulnerabilities. These vulnerabilities stem from arbitrary file reading vulnerabilities in the command-line interface, which could allow authenticated remote...
Cisco IOS和Cisco IOS XE Software 安全漏洞
Cisco IOS and Cisco IOS XE Software are products of the American company Cisco. Cisco IOS is an operating system developed for its network devices. Cisco IOS XE Software is a network operating system. There are security vulnerabilities in Cisco IOS and Cisco IOS XE Software Release 3E. These...
CVE-2026-30587
CVE-2026-30587 affects Seafile Server and its Seadoc editor, with multiple stored XSS vulnerabilities exploited via WebSocket messages that update document structure. Affected versions include 13.0.15, 13.0.16-pro, and 12.0.14 and prior; fixes are in 13.0.17, 13.0.17-pro, and 12.0.20-pro. The iss...
EUVD-2026-14740
Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to perform certain administrative functions, thereby escalating privileges...
CVE-2026-4639
Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to perform certain administrative functions, thereby escalating privileges...
CVE-2026-4639
CVE-2026-4639 affects Vitals ESP by Galaxy Software Services. The vulnerability is described as Incorrect Authorization, enabling authenticated remote attackers to perform administrative functions and escalate privileges. The NVD/NVD-derived entries provide CVSS 4.0/3.1 values with HIGH severity ...
CSPro Users CSWeb 安全漏洞
CSPro Users CSWeb is a web application developed by CSPro Users Inc. It allows users to securely transfer cases or files between client devices and web servers. Version 8.0.1 of CSPro Users CSWeb contains a security vulnerability that stems from allowing arbitrary file path inputs. This...
WellChoose IFTOP 输入验证错误漏洞
WellChoose IFTOP is a command-line network traffic monitoring tool for network traffic statistics provided by WellChoose, a company based in Taiwan, China. WellChoose IFTOP has a vulnerability related to input validation. This vulnerability stems from an open redirection vulnerability, which may...
Hewlett Packard Enterprise AOS(HPE AOS) 安全漏洞
Hewlett Packard Enterprise AOS is a network operating system developed by Hewlett Packard Enterprise in the United States. It is used for data centers, campus networks, and edge computing environments. Hewlett Packard Enterprise AOS HPE AOS contains security vulnerabilities. These vulnerabilities...
Cisco Secure Firewall Management Center SQL注入漏洞
Cisco Secure Firewall Management Center is a powerful network security management tool developed by Cisco, Inc. Cisco Secure Firewall Management Center has a SQL injection vulnerability, which stems from insufficient user input validation. This vulnerability could allow authenticated remote...
Cisco Secure Firewall Management Center SQL注入漏洞
Cisco Secure Firewall Management Center is a powerful network security management tool developed by Cisco, Inc. Cisco Secure Firewall Management Center has a SQL injection vulnerability, which stems from insufficient user input validation. This vulnerability could allow authenticated remote...
Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞
Cisco Secure Firewall Adaptive Security Appliance and Cisco Secure Firewall Threat Defense are products of Cisco, a US company. Cisco Secure Firewall Adaptive Security Appliance is an enterprise-level firewall software. Cisco Secure Firewall Threat Defense is an integrated firewall platform. Both...
WisdomGarden Tronclass 安全漏洞
WisdomGarden Tronclass is an interactive teaching management platform developed by WisdomGarden Corporation. There is a security vulnerability in WisdomGarden Tronclass, which stems from insecure direct object references. This vulnerability could allow authenticated remote attackers to access any...
CVE-2026-2099
AgentFlow developed by Flowring has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...
PT-2026-7078
C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...
CVE-2026-1514
Official Document Management System developed by 2100 Technology has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to modify front-end code to read all official documents...
CVE-2026-1514
Technical details are not publicly available in the provided documents (no affected version, patch info, or exploit details). Monitor for updates.
CVE-2026-1427
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server...
CVE-2026-1428
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server...
CVE-2026-1429
Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...