11 matches found
EUVD-2025-32532
A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. Affected by this issue is some unknown functionality of the file /stAlarmConfigure/index.do/../../aloneReport/download.do;otherlogout.do. Such manipulation of the argument fileName leads...
CVE-2025-11337
The CVE-2025-11337 issue affects Four-Faith Water Conservancy Informatization Platform (versions up to 2.2). A path traversal vulnerability exists in the handling of the fileName parameter in endpoints such as /aloneReport/index.do/../../aloneReport/download.do and /othersusrlogout.do, enabling r...
CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal
A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...
CVE-2025-11336 Four-Faith Water Conservancy Informatization Platform download.do;otherlogout.do path traversal
A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. Affected by this issue is some unknown functionality of the file /stAlarmConfigure/index.do/../../aloneReport/download.do;otherlogout.do. Such manipulation of the argument fileName leads...
PT-2025-40893
Name of the Vulnerable Software and Affected Versions Four-Faith Water Conservancy Informatization Platform versions prior to 2.3 Description A security issue exists in Four-Faith Water Conservancy Informatization Platform. The issue involves path traversal due to manipulation of the fileName...
EUVD-2025-31358
Malicious code in bioql PyPI...
CVE-2025-11018
A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects an unknown function of the file /sysRole/index.do/../../generalReport/download.do;usrlogout.do.do. Executing manipulation of the argument fileName can lead to path traversal. It is possible to launch...
CVE-2025-11018 Four-Faith Water Conservancy Informatization Platform download.do;usrlogout.do.do path traversal
A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects an unknown function of the file /sysRole/index.do/../../generalReport/download.do;usrlogout.do.do. Executing manipulation of the argument fileName can lead to path traversal. It is possible to launch...
CVE-2025-11018 Four-Faith Water Conservancy Informatization Platform download.do;usrlogout.do.do path traversal
A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects an unknown function of the file /sysRole/index.do/../../generalReport/download.do;usrlogout.do.do. Executing manipulation of the argument fileName can lead to path traversal. It is possible to launch...
Four-Faith Water Conservancy Informatization Platform θ·―εΎιεζΌζ΄
Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 1.0, which originates from an attack on the file /sysRole/index.do/... /...
CVE-2025-10708
The CVE-2025-10708 entry concerns Four-Faith Water Conservancy Informatization Platform 1.0. Affected: an unknown functionality of the files /history/historyDownload.do;usrlogout.do. Root cause: manipulation of the fileName argument leads to path traversal. Impact: remote exploitation is possible...