CVE-2024-37678

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script...

CVE-2024-37679

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter...

CVE-2024-37680

Hangzhou Meisoft Information Technology Co., Ltd. FineSoft =8.0 is affected by Cross Site Scripting XSS which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl...

CVE-2024-35504

A cross-site scripting XSS vulnerability in the login page of FineSoft v8.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL:errorname parameter after a failed login attempt...

CVE-2024-37678

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script...

CVE-2024-37678

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script...

CVE-2024-37679

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter...

CVE-2024-37680

Hangzhou Meisoft Information Technology Co., Ltd. FineSoft =8.0 is affected by Cross Site Scripting XSS which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl...

CVE-2024-37680

Hangzhou Meisoft Information Technology Co., Ltd. FineSoft =8.0 is affected by Cross Site Scripting XSS which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl...

CVE-2024-37679

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter...

CVE-2024-37678

CVE-2024-37678 describes a Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v8.0 and earlier. The flaw allows a remote attacker to execute arbitrary code via a crafted script. The affected product is Finesoft (version 8.0 and before); the underlying...

PT-2024-27715 · Hangzhou Meisoft Information Technology Co. · Finesoft

Name of the Vulnerable Software and Affected Versions: Hangzhou Meisoft Information Technology Co., Ltd. FineSoft versions prior to 8.0 Description: The issue allows remote attackers to execute arbitrary code through Cross Site Scripting XSS. When attempting to log in with any account and passwor...

CVE-2024-37680

Hangzhou Meisoft Information Technology Co., Ltd. FineSoft =8.0 is affected by Cross Site Scripting XSS which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl...

CVE-2024-37678

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script...

Hangzhou Meisoft Information Technology FineSoft Cross-Site Scripting Vulnerability

Hangzhou Meisoft Information Technology Finesoft is a pharmaceutical management software from Hangzhou Meisoft Information China. A cross-site scripting vulnerability exists in Hangzhou Meisoft Information Technology FineSoft v.8.0 and earlier versions, which can be exploited to allow a remote...

PT-2024-27713 · Finesoft · Finesoft

Name of the Vulnerable Software and Affected Versions: Finesoft versions 8.0 and before Description: The issue allows a remote attacker to execute arbitrary code via a crafted script to the "login.jsp" parameter. This enables the attacker to perform actions such as executing arbitrary code...

CVE-2024-37679

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter...

Hangzhou Meisoft Information Technology FineSoft Cross-Site Scripting Vulnerability

Hangzhou Meisoft Information Technology Finesoft is a pharmaceutical management software from Hangzhou Meisoft Information China. A cross-site scripting vulnerability exists in Hangzhou Meisoft Information Technology FineSoft v.8.0 and prior versions that could allow a remote attacker to execute...

CVE-2024-37679

CVE-2024-37679 is a cross-site scripting vulnerability in Hangzhou Meisoft Information Technology Co.’s Finesoft v8.0 and earlier. The issue allows a remote attacker to execute arbitrary code by submitting a crafted script to the login.jsp parameter. The affected software is Finesoft (FineSoft) v...

Hangzhou Meisoft Information Technology Finesoft Security Breach

Hangzhou Meisoft Information Technology Finesoft is a pharmaceutical management software from Hangzhou Meisoft Information China. A security vulnerability exists in Hangzhou Meisoft Information Technology Finesoft v.8.0 and prior versions that could allow a remote attacker to execute arbitrary co...