Lucene search
K

17 matches found

CNNVD
CNNVD
added 2026/03/02 12:0 a.m.8 views

e-Excellence U-Office Force 代码问题漏洞

e-Excellence U-Office Force is an electronic office platform developed by e-Excellence, a leading technology company in China. There is a code vulnerability in e-Excellence U-Office Force, which stems from insecure deserialization. This vulnerability could allow unverified remote attackers to...

9.8CVSS6.2AI score0.00762EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/17 5:58 a.m.9 views

CVE-2025-2396 e-Excellence U-Office Force - Arbitrary File Upload

The U-Office Force from e-Excellence has an Arbitrary File Upload vulnerability, allowing remote attackers with regular privileges to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.8CVSS0.00622EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/17 5:51 a.m.9 views

CVE-2025-2395 e-Excellence U-Office Force - Improper Authentication

The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to use a particular API and alter cookies to log in as an administrator...

9.8CVSS9.6AI score0.00545EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.5 views

e-Excellence U-Office Force 安全漏洞

e-Excellence U-Office Force is an e-Office platform from China-based First Class Technology e-Excellence. A security vulnerability exists in e-Excellence U-Office Force that stems from improper authentication, which could result in an unauthenticated remote attacker logging in as an administrator...

9.8CVSS7AI score0.00545EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.5 views

e-Excellence U-Office Force 代码问题漏洞

e-Excellence U-Office Force is an e-Office platform from China's First Class Technology e-Excellence. A code issue vulnerability exists in e-Excellence U-Office Force, which originates from an arbitrary file upload and could allow a remote attacker to upload and execute a Web Shell backdoor to...

8.8CVSS7.9AI score0.00622EPSS
Exploits0References2
OSV
OSV
added 2023/08/25 8:15 a.m.2 views

CVE-2023-32756

e-Excellence U-Office Force has a path traversal vulnerability within its file uploading and downloading functions. An unauthenticated remote attacker can exploit this vulnerability to read arbitrary system files, but can’t control system or disrupt service...

7.5CVSS5.9AI score0.00871EPSS
Exploits0References1
OSV
OSV
added 2023/08/25 8:15 a.m.3 views

CVE-2023-32757

e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker without logging the service can exploit this vulnerability to upload arbitrary files to perform arbitrary command or disrupt service...

9.8CVSS5.9AI score0.007EPSS
Exploits0References1
NVD
NVD
added 2023/08/25 8:15 a.m.15 views

CVE-2023-32757

e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker without logging the service can exploit this vulnerability to upload arbitrary files to perform arbitrary command or disrupt service...

9.8CVSS9.8AI score0.007EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/25 7:29 a.m.20 views

CVE-2023-32757 e-Excellence U-Office Force - Arbitrary File Upload

e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker without logging the service can exploit this vulnerability to upload arbitrary files to perform arbitrary command or disrupt service...

9.8CVSS9.9AI score0.007EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/25 7:14 a.m.15 views

CVE-2023-32756 e-Excellence U-Office Force - Path Traversal

e-Excellence U-Office Force has a path traversal vulnerability within its file uploading and downloading functions. An unauthenticated remote attacker can exploit this vulnerability to read arbitrary system files, but can’t control system or disrupt service...

7.5CVSS7.2AI score0.00871EPSS
Exploits0References1
CVE
CVE
added 2023/08/25 7:14 a.m.60 views

CVE-2023-32756

CVE-2023-32756 affects e-Excellence U-Office Force and is a path traversal vulnerability in its file upload/download functionality. An unauthenticated remote attacker can read arbitrary system files, with no ability to compromise or disrupt system operation as described in the sources. Several da...

7.5CVSS7.6AI score0.00871EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/25 6:48 a.m.22 views

CVE-2023-32755 e-Excellence U-Office Force - Error Message Leakage

e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated remote attacker can obtain partial sensitive system information from error message by sending a crafted command...

5.3CVSS5.4AI score0.00479EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/25 6:48 a.m.14 views

CVE-2023-32755 e-Excellence U-Office Force - Error Message Leakage

e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated remote attacker can obtain partial sensitive system information from error message by sending a crafted command...

5.3CVSS6.5AI score0.00479EPSS
Exploits0References1
CVE
CVE
added 2023/08/25 6:48 a.m.44 views

CVE-2023-32755

CVE-2023-32755 affects e-Excellence U-Office Force. The web service may reveal partial sensitive system information via crafted commands in error messages; no concrete patch/version is provided in the sources. Monitor for updates and advisories from multiple vendors.

5.3CVSS5AI score0.00479EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/25 12:0 a.m.5 views

PT-2023-24003 · Unknown · E-Excellence U-Office Force

Name of the Vulnerable Software and Affected Versions: e-Excellence U-Office Force affected versions not specified Description: An unauthenticated remote attacker can obtain partial sensitive system information from an error message by sending a crafted command to the website service of...

5.3CVSS5.2AI score0.00479EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/08/25 12:0 a.m.6 views

PT-2023-24004 · Unknown · E-Excellence U-Office Force

Name of the Vulnerable Software and Affected Versions: e-Excellence U-Office Force affected versions not specified Description: The issue is related to a path traversal vulnerability within the file uploading and downloading functions. An unauthenticated remote attacker can exploit this to read...

7.5CVSS7.4AI score0.00871EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/08/25 12:0 a.m.3 views

e-Excellence U-Office Force 路径遍历漏洞

e-Excellence U-Office Force is an e-Office platform from China First Class Technology e-Excellence. A path traversal vulnerability exists in e-Excellence U-Office Forc, which can be exploited by an attacker to read arbitrary system files...

7.5CVSS7.5AI score0.00871EPSS
Exploits0References2
Rows per page
Query Builder