24 matches found
CVE-2023-5827
A vulnerability was found in Shanghai CTI Navigation CTI Monitoring and Early Warning System 2.2. It has been classified as critical. This affects an unknown part of the file /Web/SysManage/UserEdit.aspx. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed t...
CVE-2023-5827
CVE-2023-5827 affects Shanghai CTI Navigation CTI Monitoring and Early Warning System 2.2. The vulnerability is in the file /Web/SysManage/UserEdit.aspx, where manipulating the ID parameter leads to a SQL injection. Several connected sources corroborate a critical impact with public disclosure of...
CVE-2023-5827 Shanghai CTI Navigation CTI Monitoring and Early Warning System UserEdit.aspx sql injection
A vulnerability was found in Shanghai CTI Navigation CTI Monitoring and Early Warning System 2.2. It has been classified as critical. This affects an unknown part of the file /Web/SysManage/UserEdit.aspx. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed t...
CVE-2023-3797
CVE-2023-3797 affects Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System up to 20230712. The vulnerability is in /Duty/AjaxHandle/UploadFloodPlanFileUpdate.ashx, where manipulating the Filedata parameter enables unrestricted file upload. Ex...
Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System 代码问题漏洞
Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System is a Mountain Flood Disaster Prevention Monitoring and Early Warning System from Suncreate. A code issue vulnerability exists in Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System...
Out-of-bounds
A vulnerability classified as critical was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. This vulnerability affects unknown code of the file /Duty/AjaxHandle/Write/UploadFile.ashx of the component Duty Write-UploadFile. The manipulation ...
CVE-2023-3626
CVE-2023-3626 affects Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. The issue resides in the UpLoadFloodPlanFile.ashx handler (UpLoadFloodPlanFile component) where manipulation of the Filedata argument allows unrestricted file upload. Exploitatio...
CVE-2023-3626 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System UpLoadFloodPlanFile UpLoadFloodPlanFile.ashx unrestricted upload
A vulnerability, which was classified as critical, has been found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. This issue affects some unknown processing of the file /Duty/AjaxHandle/UpLoadFloodPlanFile.ashx of the component...
CVE-2023-3625
Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System (up to 20230706) has a vulnerability in the Duty Write-UploadFile component: the /Duty/AjaxHandle/Write/UploadFile.ashx endpoint processes Filedata and allows unrestricted upload. This can be exploited remotely and i...
CVE-2023-3623
A vulnerability was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230704. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Duty/AjaxHandle/UploadHandler.ashx of the component Duty Module. The...
CVE-2023-3623 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Module UploadHandler.ashx unrestricted upload
A vulnerability was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230704. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Duty/AjaxHandle/UploadHandler.ashx of the component Duty Module. The...
CVE-2023-3623 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Module UploadHandler.ashx unrestricted upload
A vulnerability was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230704. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Duty/AjaxHandle/UploadHandler.ashx of the component Duty Module. The...
CVE-2023-3623
CVE-2023-3623 affects Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System (versions up to 20230704). The vulnerability is in the Duty Module, specifically the file path /Duty/AjaxHandle/UploadHandler.ashx, where manipulating the Filedata argument enables unrestricted ...
Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System 代码问题漏洞
Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System is a flash flood prevention monitoring and early warning system from Suncreate. A code issue vulnerability exists in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System 20230706 and earli...
Detect Exploitation Attempts With Qualys XDR (Beta)
The recently announced Log4JShell / CVE-2021-44228 exploit is the latest reminder of why it’s so important to maintain an enterprise-wide view of your security posture. The heart of the exploit centers around misuse of the JNDI lookup function built into log4j. Impact: There are multiple proofs o...
SQL Injection Vulnerability in Flash Flood Monitoring and Early Warning System of Fujian SiChuang Software Co.
Fujian SiChuang Software Co., Ltd. is a technology-based enterprise dedicated to the cause of disaster prevention and mitigation in China. It specializes in providing disaster prevention and mitigation emergency command system solutions for the government, disaster prevention and mitigation...
File upload vulnerability in county-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co., Ltd (CNVD-2021-51387)
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
There is a logic flaw vulnerability in the flash flood monitoring and early warning distribution system of Siltronic Ltd.
Siltronic Ltd. China disaster reduction and profitability information service provider. A logic flaw vulnerability exists in the flash flood monitoring and early warning distribution system of Siltronic Technologies Limited, which can be exploited by an attacker to log in to the system as an...
Unauthorized Access Vulnerability in Flash Flood Monitoring and Early Warning System of Chengdu Wanjiang Gangli Technology Co.
Founded in 2007, Chengdu Wanjiang Gangli Technology Co., Ltd. is positioned as a full chain service provider of water technology under the framework of artificial intelligence. An unauthorized access vulnerability exists in the flash flood monitoring and early warning system of Chengdu Wanjiang...
File upload vulnerability in flash flood monitoring and early warning system
Chengdu Wanjiang Gangli Technology Co., Ltd. is a professional manufacturer and supplier of electronic product development, computer software product development and water conservancy informatization system design. A file upload vulnerability exists in the flash flood monitoring and early warning...