Ruoyi security vulnerabilities

Ruoyi is a backend management system developed by Ruoyi’s individual developer. The Ruoyi v4.8.2 version has a security vulnerability, which stems from improper access control in the update function. This vulnerability could allow unauthorized attackers to modify data beyond its intended scope...

Ruoyi 代码注入漏洞

Ruoyi is a backend management system for individual developers. Ruoyi 4.8.1 and previous versions of code injection vulnerability exists, the vulnerability stems from improper handling of the parameter fragment in the file /monitor/cache/getnames, which may lead to code injection...

ELADMIN 授权问题漏洞

ELADMIN is a backend management system for elunez individual developers. An authorization issue vulnerability exists in ELADMIN version 1.1, which stems from improper authorization of the function deleteFile in the component LocalStorageController...

CVE-2022-40924

Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "saveanimal" file of the "Animals" module in the background management system...

ELADMIN 代码问题漏洞

ELADMIN is a backend management system for elunez individual developers. A code issue vulnerability exists in ELADMIN version 2.7 that stems from deserialization...

springboot-manager 代码注入漏洞

springboot-manager is a backend management system based on SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus by an individual developer in China, liwenbin. A code injection vulnerability exists in springboot-manager version 3.0, which originates from cross-site scripting and...

CVE-2024-55086

In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery SSRF can be achieved in the plug-in download address in the backend management system...

CVE-2024-55086

In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery SSRF can be achieved in the plug-in download address in the backend management system...

springboot-manager Security Vulnerability

springboot-manager is a backend management system based on SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus by Chinese liwenbin individual developer. A security vulnerability exists in springboot-manager v1.6, which originates from an easy cross-site scripting attack via...

Zoo Management System save_event Arbitrary File Upload Vulnerability

Zoo Management System is a zoo management system. It provides an online and automated platform for zoo organizations to manage their daily records. An arbitrary file upload vulnerability exists in Zoo Management System v1.0, which arises from a lack of validation of uploaded files at the image...

CVE-2022-40924

Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "saveanimal" file of the "Animals" module in the background management system...

PT-2022-25622

Name of the Vulnerable Software and Affected Versions Zoo Management System version 1.0 Description The issue is related to an arbitrary file upload vulnerability in the picture upload point of the "save animal" file of the "Animals" module in the background management system. Recommendations For...

SQL Injection Vulnerability in Employment Service Backend Management System of Chongqing Softfox Information Technology Co. Ltd (CNVD-2021-49118)

Chongqing Softfox Information Technology Co., Ltd. has long been focusing on the Internet + intelligent employment service platform and solutions. There is a SQL injection vulnerability in the background management system of Chongqing Softfox Information Technology Co., Ltd's employment service,...

Unauthorized access vulnerability in Isha's back-office management system

Isha Backend Management System is a .NET Core Web-based development system. An unauthorized access vulnerability exists in Yisha Backend Management System, which can be exploited by attackers to obtain sensitive information...

Logic Flaw Vulnerability in Backend Management System of Website Builder Workshop

Ltd. is a technical service provider of information security products based on cloud computing data center, and is one of the top three organizations in the domestic IDC industry. There is a logic flaw vulnerability in the backend management system of the station building workshop, which can be...

Logic Flaw Vulnerability in ENLINK CASB Backend Management System

Ltd. specializes in network security product development and sales, is the industry's leading "zero trust" solution provider. A logic flaw exists in the backend management system of ENLINK CASB, which can be exploited by an attacker to cause an arbitrary user password to log into the management...

Logic Flaw Vulnerability in Renzi Gateway Backend Management System

Renzi Network Technology Co., Ltd. was founded in May 2000, and its business covers network security, information security, public security, network resource security, industrial internet security and many other fields, etc. etc. A logic flaw vulnerability exists in the backend management system ...

SQL Injection Vulnerability in IP Webcast Backend Management System of Guangzhou Paulun Electronics Co.

Ltd. is a brand that specializes in the research, development and production of sound, light and video system integration equipment. There is a SQL injection vulnerability in the background management system of IP network broadcasting of Guangzhou Paulun Electronic Co., Ltd, which can be exploite...

Arbitrary file download vulnerability in ZengCMS 1.0.0 backend

ZengCMS is a backend management system based on the latest TP6.0.x framework and Layui 2.5.x. ZengCMS1.0.0 backend has an arbitrary file download vulnerability, which can be exploited by attackers to obtain sensitive information...

File Upload Vulnerability in seacms v12.5 Backend Management System

SeaCMS Ocean CMS is a web content management system based on PHP+MYSQL architecture and supports cross-platform operation. A file upload vulnerability exists in the seacms v12.5 backend management system, which can be exploited by attackers to gain control of the server...