46 matches found
CVE-2026-54105 U.S. GAO EPDS and CBCA EDS user information disclosure
The U.S. Government Accountability Office GAO Electronic Protest Docketing System EPDS and Civilian Board of Contract Appeals CBCA Electronic Docketing System EDS expose sensitive account information through the 'update-profile/' API endpoint. A remote, unauthenticated attacker can submit a reque...
CVE-2020-20426
S-CMS Government Station Building System v5.0 contains a cross-site scripting XSS vulnerability in /function/booksave.php...
Zhiyuan G6 Government Collaboration System 跨站脚本漏洞
Zhiyuan G6 Government Collaboration System is an application system of China Zhiyuan Company. It is used to connect and integrate front-end and back-end scenario-based business applications. A cross-site scripting vulnerability exists in Zhiyuan G6 Government Collaboration System V6.1SP1, which...
Evolution of Emotet: From Banking Trojan to Malware Distributor
Emotet is one of the most dangerous and widespread malware threats active today. Ever since its discovery in 2014—when Emotet was a standard credential stealer and banking Trojan, the malware has evolved into a modular, polymorphic platform for distributing other kinds of computer viruses. Being...
Personal data of 75,000 individuals exposed after HealthCare.gov system hack
By Waqas Centers for Medicare and Medicaid Services CMS experienced a data breach leading to exposure of highly sensitive personal data of nearly 75,000 people. The CMS is a government system linked with healthCare.gov which assists insurance agents and brokers in helping people register for its...
SQL Injection Vulnerability in 'menu_id' Parameter of Pioneer Hi-Tech Government System
Pioneer Hi-Tech Government System is an "easy technology" system. A SQL injection vulnerability exists in the 'menuid' parameter of the Pilot Hi-Tech Government System. This vulnerability can be exploited by attackers to obtain sensitive information from the database...
Code Execution Vulnerability in Ohu Government System/design/edittheme1.php
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A code execution vulnerability exists in the Ohuhu government system /design/edittheme1.php. An attacker can exploit this vulnerability to execute arbitrary php code...
Ohoo Government System ohocms_viewcode.php Arbitrary File Read Vulnerability
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. There is an arbitrary file read vulnerability in the ohocmsviewcode.php file of the Ohu government system. An attacker can exploit this vulnerability to read arbitrary files...
Eurohoo Government System set_border_color.php File Remote Command Execution Vulnerability
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A remote code execution vulnerability exists in the setbordercolor.php file of the Ohuhu Government System due to improper filtering. An attacker can exploit this vulnerability to execute arbitrary ph...
SQL Injection Vulnerability in Province_city1.php File of Ohu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A SQL injection vulnerability exists in the provincecity1.php file of the Ohuhu government system. An attacker can exploit this vulnerability to execute arbitrary SQL statements and obtain sensitive...
SQL Injection Vulnerability in jg_city.php File of Ohu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A SQL injection vulnerability exists in the jgcity.php file of the Ohuhu government system. An attacker can exploit this vulnerability to execute arbitrary SQL statements and obtain sensitive...
SQL Injection Vulnerability in getsyscat.php File of Ohu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A SQL injection vulnerability exists in the getsyscat.php file of the Ohuhu Government System. An attacker can exploit this vulnerability to execute arbitrary SQL statements and obtain sensitive...
SQL Injection Vulnerability in getjwj.php File of Ohu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A SQL injection vulnerability exists in the getjwj.php file of the Ohuhu Government System. An attacker can exploit this vulnerability to execute arbitrary SQL statements and obtain sensitive...
Remote Code Execution Vulnerability in custom_design.php File of Ohuhu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A remote code execution vulnerability exists in the customdesign.php file of the Ohuhu government system. An attacker can exploit this vulnerability to execute arbitrary php code...
Design_edittheme2.php Arbitrary File Write Vulnerability in Ohoo Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. An arbitrary file write vulnerability exists in the designedittheme2.php file of the Ohuhu government system. This vulnerability allows attackers to write arbitrary files and gain server privileges...
SQL Injection Vulnerability in catid_save.php File of Ohu Government System
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A SQL injection vulnerability exists in the catidsave.php file of the Ohuhu government system. An attacker can exploit the vulnerability to execute arbitrary SQL statements and obtain sensitive...
Ohu Government System/design/catid_user_save.php Code Execution Vulnerability
Ohuhu government system is the government portal system of Shanghai Ohuhu Network Technology Co. A code execution vulnerability exists in the Eurohoo government system/design/catidusersave.php. An attacker can exploit the vulnerability to execute arbitrary php code...
Weak Password Vulnerability in Sichuan Green Blue e-Government System Website
Sichuan green blue e-government system is an e-government building system. Weak password vulnerability exists in some websites of Sichuan Green Blue e-government system. Allow attackers to use the account password admin/scjg888 to log in to the system background, to obtain sensitive information...
Arbitrary File Read Vulnerability in Shanghai Ohuhu Network Technology Co.
Shanghai Ohuhu Network Technology Co., Ltd. is a service-oriented enterprise integrating Internet software research and development, website operation, e-commerce and IT services. Shanghai Ohuhu Network Technology Co., Ltd Ohuhu government system suffers from an arbitrary file read vulnerability...
Arbitrary File Write Vulnerability in Eurohoo Government System of Shanghai Eurohoo Network Technology Co.
Shanghai Ohuhu Network Technology Co., Ltd. is a service-oriented enterprise integrating Internet software research and development, website operation, e-commerce and IT services. There is an arbitrary file write vulnerability in Shanghai Ohuhu Network Technology Co. The vulnerability allows an...