682 matches found
CVE-2024-22923
SQL injection vulnerability in adv radius v.2.2.5 allows a local attacker to execute arbitrary code via a crafted script...
Sql injection
SQL injection vulnerability in adv radius v.2.2.5 allows a local attacker to execute arbitrary code via a crafted script...
CVE-2024-22923
SQL injection vulnerability in adv radius v.2.2.5 allows a local attacker to execute arbitrary code via a crafted script...
CVE-2024-22923
SQL injection vulnerability in adv radius v.2.2.5 allows a local attacker to execute arbitrary code via a crafted script...
CVE-2023-48974
Cross Site Scripting vulnerability in Axigen WebMail prior to 10.3.3.61 allows a remote attacker to escalate privileges via a crafted script to the serverNameinput parameter...
Cross site scripting
Cross Site Scripting XSS vulnerability in Sunlight CMS v.8.0.1, allows remote authenticated attackers to execute arbitrary code and escalate privileges via a crafted script to the Content text editor component...
Sunlight CMS Security Vulnerability
Sunlight CMS is a content management system from Sunlight CMS open source. A security vulnerability exists in Sunlight CMS version v.8.0.1. A remote attacker can exploit the vulnerability to execute arbitrary code and escalate privileges via a specially crafted script...
CVE-2024-22922
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php...
Vistor Management System Security Vulnerability
Vistor Management System is a visitor management system. A security vulnerability exists in Projectworlds Vistor Management System version v.1.0, which stems from a vulnerability that allows a remote attacker to escalate privileges via a crafted script...
PT-2024-19615 · Unknown · Projectworlds Visitor Management System
Name of the Vulnerable Software and Affected Versions: Projectworlds Vistor Management Systemin PHP version 1.0 Description: An issue in the system allows a remote attacker to escalate privileges via a crafted script to the login page in the POST/index.php. Recommendations: For version 1.0,...
CVE-2024-22922
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php...
CVE-2024-22922
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php...
CVE-2023-51906
An issue in yonyou YonBIP v323.05 allows a remote attacker to execute arbitrary code via a crafted script to the ServiceDispatcherServlet uap.framework.rc.itf.IResourceManager component...
CVE-2023-51892
An issue in weaver e-cology v.10.0.2310.01 allows a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController component...
Design/Logic Flaw
An issue in weaver e-cology v.10.0.2310.01 allows a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController component...
Weaver e-cology security breach
Weaver e-cology is a collaborative management application platform from China's Panmicro Technologies Weaver. A security vulnerability exists in Weaver e-cology version v.10.0.2310.01 that could allow a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController...
CVE-2023-51906
An issue in yonyou YonBIP v323.05 allows a remote attacker to execute arbitrary code via a crafted script to the ServiceDispatcherServlet uap.framework.rc.itf.IResourceManager component...
Code injection in mingSoft MCMS
An issue in mingSoft MCMS v.5.2.4 allows a a remote attacker to obtain sensitive information via a crafted script to the password parameter...
GHSA-H57W-VH34-F8CW Code injection in mingSoft MCMS
An issue in mingSoft MCMS v.5.2.4 allows a a remote attacker to obtain sensitive information via a crafted script to the password parameter...
CVE-2023-51282
An issue in mingSoft MCMS v.5.2.4 allows a a remote attacker to obtain sensitive information via a crafted script to the password parameter...