PT-2024-16945 · WordPress · Broadcast

Name of the Vulnerable Software and Affected Versions: Broadcast plugin for WordPress versions up to, and including, 51.01 Description: The issue is related to Reflected Cross-Site Scripting via the do check parameter due to insufficient input sanitization and output escaping. This allows...

WordPress plugin Broadcast 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

Checkmk Injection Vulnerability

Checkmk is an editor. Checkmk suffers from a security vulnerability that stems from a security issue with the parameter ctive check command, which allows an authenticated attacker to execute arbitrary commands...

CVE-2023-29862

An issue found in Agasio-Camera device version not specified allows a remote attacker to execute arbitrary code via the check and authLevel parameters...

Code injection

An issue found in Agasio-Camera device version not specified allows a remote attacker to execute arbitrary code via the check and authLevel parameters...

Agasio-Camera 安全漏洞

Dericam Agasio-Camera is a series of camera surveillance devices from Dericam Technology Dericam, a Chinese company. A security vulnerability exists in Agasio-Camera that originates from allowing remote attackers to execute arbitrary code via the check and authLevel parameters...

PT-2023-22453 · Unknown · Agasio-Camera

Name of the Vulnerable Software and Affected Versions: Agasio-Camera affected versions not specified Description: An issue in the Agasio-Camera device allows a remote attacker to execute arbitrary code via the check and authLevel parameters. Recommendations: At the moment, there is no information...

RG-NBR-E Enterprise Gateway RG-NBR2100G-E 安全漏洞

RG-NBR-E Enterprise Gateway RG-NBR2100G-E is an enterprise gateway. A security vulnerability exists in the RG-NBR-E Enterprise Gateway RG-NBR2100G-E, which originates from an arbitrary file read vulnerability via the url parameter in check.php...

ECShop SQL Injection Vulnerability (CNVD-2021-44949)

ECShop is a professional e-commerce mall system. A SQL injection vulnerability exists in ECShop version 3.0. An attacker can exploit this vulnerability by using the aid parameter of admin/affiliateck.php to conduct SQL injection attacks...

PT-2018-10640 · Wuzhi · Wuzhi Cms

Name of the Vulnerable Software and Affected Versions: WUZHI CMS version 4.1.0 Description: The issue is related to SQL Injection, which can be exploited via the /api/sms check.php API endpoint with a param variable. Recommendations: For WUZHI CMS version 4.1.0, update to a newer version that...