5 matches found
EUVD-2025-32537
A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...
CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal
A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...
CVE-2025-11018
Four-Faith Water Conservancy Informatization Platform 1.0 is affected by a path traversal flaw. The vulnerability lies in the handling of the fileName argument of the endpoint chain /sysRole/index.do/../../generalReport/download.do;usrlogout.do.do, enabling remote exploitation. An exploit has bee...
CVE-2025-10708 Four-Faith Water Conservancy Informatization Platform historyDownload.do;usrlogout.do path traversal
A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this vulnerability is an unknown functionality of the file /history/historyDownload.do;usrlogout.do. The manipulation of the argument fileName leads to path traversal. Remote...
Four-Faith Water Conservancy Informatization 安全漏洞
Four-Faith Water Conservancy Informatization is a water conservancy informatization system from China Four-Faith Four-Faith. A security vulnerability exists in Four-Faith Water Conservancy Informatization version 1.0, which stems from an incorrect manipulation of the parameter fileName in the fil...