Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2021/12/24 12:0 a.m.9 views

The vulnerability of the “company_filter” parameter in the group_list page of the monitoring software for the functions and states of Advantech R-SeeNet routers allows a perpetrator to execute cross-site scripting attacks.

The vulnerability of the “companyfilter” parameter on the grouplist page of the monitoring component of the Advantech R-SeeNet router management software is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to perform...

7.7CVSS5.3AI score0.0138EPSS
Exploits1References3
OSV
OSV
added 2021/12/22 7:15 p.m.2 views

CVE-2021-21917

An exploitable SQL injection vulnerability exist in the ‘grouplist’ page of the Advantech R-SeeNet 2.4.15 30.07.2021. A specially-crafted HTTP request at '‘ord’ parameter. An attacker can make authenticated HTTP requests to trigger this vulnerability. This can be done as any authenticated user or...

8.8CVSS5.8AI score0.0138EPSS
Exploits1References1
CNVD
CNVD
added 2016/10/14 12:0 a.m.2 views

SQL Injection Vulnerability in Groupid Parameter of EAP Digital Campus Integration Management Platform of Guangzhou Zhongda Dongri Education Technology Co.

EAP platform, abbreviated as EAP Enterprise Application Platform, enterprise application platform, also known as enterprise management software platform, is a highly open, integrated with a number of enterprise management software modules. Ltd. EAP digital campus integrated management platform...

7.8AI score
Exploits0References1
Rows per page
Query Builder