jshERP 安全漏洞

jshERP Huaxia ERP is a homegrown ERP system by the individual developer of Ji Sheng Hua in China. A security vulnerability exists in jshERP v3.5, which stems from improper access control in the ResourceController.java component and could lead to access to ID data...

like-girl 安全漏洞

like-girl is a couple logging tool by the individual developer of kiCode111 in China. A security vulnerability exists in like-girl version 5.2.0, which originates from SQL injection due to the incorrect operation of the parameter bz/ipdz in the file /admin/ipAddPost.php...

ZZCMS 安全漏洞

ZZCMS is a content management system CMS by the ZZCMS team in China. A cross-site scripting vulnerability exists in ZZCMS v2023 and earlier versions, which stems from incorrect HTTPREFERER header handling, and can be exploited by an attacker to execute malicious scripts via specially crafted URLs...

Reolink Rlc-410W Denial of Service Vulnerability (CNVD-2022-37395)

Reolink Rlc-410W is a Wifi security camera from Reolink China. The Reolink Rlc-410W suffers from a denial of service vulnerability that can be exploited by an attacker to cause a reboot via a compiled HTTP request...

编号撤回

This CVE number has been withdrawn...

Starbucks: China - Open redirect at trackinghub.starbucks.com.cn

m82a1 discovered an open redirect at https://trackinghub.starbucks.com.cn/trackinstallation due to improper validation of the redirecturl parameter. @m82a1 — thank you for reporting this vulnerability...

TikTok Banned By U.S. Army Over China Security Concerns

With backlash swelling around TikTok’s relationship with China, the United States Army this week announced that U.S. soldiers can no longer have the social media app on government-owned phones. TikTok, a social media app used to create and share short form videos, is owned by Beijing-based parent...