Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to bypass authentication and have remote access to sensitive information on the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this...

SQL Injection Vulnerability in SQLBot of Hangzhou Feizhiyun Information Technology Co.

SQLBot is an intelligent questioning system based on large models and RAG. Hangzhou Feizhiyun Information Technology Co., Ltd SQLBot suffers from a SQL injection vulnerability, which can be exploited by an attacker to obtain sensitive information from the database...

EUVD-2024-53460

Malicious code in bioql PyPI...

Hangzhou Shunwang Rentdrv2 安全漏洞

Hangzhou Shunwang Rentdrv2 is a software application from Hangzhou Shunwang, a Chinese company. A security vulnerability exists in Hangzhou Shunwang Rentdrv2 versions prior to 2024-12-24, which stems from a flaw in the DeviceIoControl function that could lead to process termination...

CVE-2023-44976

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023...

Logic flaw vulnerability in DataEase of Hangzhou Feizhiyun Information Technology Co. Ltd (CNVD-2025-19437)

DataEase is open source data visualization and analysis tools. DataEase by Hangzhou Feizhiyun Information Technology Co. Ltd. has a logic flaw vulnerability that can be exploited by attackers to bypass authentication...

Command Execution Vulnerability in Cube OCS Management System of Hangzhou Cube Holding Co.

Cube OCS Management System is an access control management platform, mainly used for enterprise production management and access control scenarios. A command execution vulnerability exists in the Cube OCS Management System of Hangzhou Cube Holding Company Limited, which can be exploited by an...

CVE-2024-37679

Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter...

CVE-2024-26520

An issue in Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform v1 allows an attacker to bypass authentication and perform arbitrary password resets...

Command Execution Vulnerability in MaxKB at Hangzhou Feizhiyun Information Technology Co.

MaxKB is an open source knowledge base Q&A system based on big language model and RAG under Hangzhou Feizhiyun Information Technology Co. MaxKB has a command execution vulnerability that can be exploited by attackers to execute commands...

CVE-2024-56951

An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link...

CVE-2024-56951

An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link...

PT-2025-3355 · Hangzhou Bobo Technology Co · Uu Game Booster

Name of the Vulnerable Software and Affected Versions: Hangzhou Bobo Technology Co Ltd UU Game Booster version 10.6.13 Description: An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster allows attackers to access sensitive user information via supplying a crafted link. Recommendations: For...

CVE-2024-56951

CVE-2024-56951 affects Hangzhou Bobo Technology Co Ltd UU Game Booster for iOS, version 10.6.13. The issue allows an attacker to access sensitive user information by supplying a crafted link. The connected sources confirm the affected version and the basic abuse vector but do not provide detailed...

CVE-2024-56951

An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link...

XSS Vulnerability in Mingguo Security Gateway of Hangzhou ACE Information Technology Co.

MingGuard Security Gateway is a next-generation security protection system with full-process defense, which is an intelligent gateway integrating traditional firewall, intrusion prevention system, anti-virus gateway, Internet behavior control, VPN gateway, threat intelligence and other security...

CVE-2024-26520

An issue in Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform v1 allows an attacker to bypass authentication and perform arbitrary password resets...

CVE-2024-26520

The CVE-2024-26520 entry concerns Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform v1. Multiple connected sources confirm a vulnerability where an attacker can bypass authentication and perform arbitrary password resets. This affects the Rest...

CVE-2024-26520

An issue in Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform v1 allows an attacker to bypass authentication and perform arbitrary password resets...

PT-2024-21415 · Hangzhou Xiongwei Technology Development Co. · Restaurant Digital Comprehensive Management Platform

Name of the Vulnerable Software and Affected Versions: Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform version v1 Description: The issue allows an attacker to bypass authentication and perform arbitrary password resets. Recommendations: For...