CVE-2020-21786

In IBOS 4.5.4 Open, Arbitrary File Inclusion causes getshell via /system/modules/dashboard/controllers/CronController.php...

PT-2024-22370 · Ibos · Ibos

Name of the Vulnerable Software and Affected Versions: IBOS version 4.5.5 Description: IBOS version 4.5.5 contains an arbitrary file deletion vulnerability located in the systemmodulesdashboardcontrollersLoginController.php file. Recommendations: Update to a newer version of IBOS to address this...

CVE-2023-4545

A vulnerability was found in IBOS OA 4.5.5. It has been classified as critical. Affected is an unknown function of the file ?r=recruit/bgchecks/export&checkids=x. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

CVE-2023-1742

A vulnerability was found in IBOS 4.5.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?r=report/api/getlist of the component Report Search. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been...

PT-2023-17031 · Ibos · Ibos

Name of the Vulnerable Software and Affected Versions: IBOS version 4.5.5 Description: A critical issue has been found in the software. It affects an unknown function of the file ApiController.php. The manipulation of the emailids argument leads to sql injection. This issue can be exploited...

PT-2023-16857 · Ibos · Ibos

Name of the Vulnerable Software and Affected Versions: IBOS versions up to 4.5.5 Description: A problematic issue has been found in IBOS, affecting some unknown functionality of the file mobil/index.php. The manipulation of the accesstoken argument leads to cross-site scripting. The attack can be...

IBOS Enterprise Collaboration Management Software Business Edition Has XSS Vulnerabilities

IBOS Enterprise Collaboration Management Software is an open source office OA system developed by Shenzhen BOS Xiechuang Network Technology Co. IBOS enterprise collaborative management software commercial version of the XSS vulnerability, attackers can use the vulnerability to obtain user cookie...

Command Execution Vulnerability in IBOS Enterprise Collaboration Management Software Backend

IBOS Enterprise Collaboration Management Software is a PHP-based collaborative office management system. A command execution vulnerability exists in the backend of IBOS Enterprise Collaboration Management Software, which can be exploited by a remote attacker to submit a special request, execute...

SQL Injection Vulnerability in IBOS Enterprise Collaboration Management Software DefaultController.php Page

IBOS Enterprise Collaboration Management Software is a PHP-based collaborative office management system. A SQL injection vulnerability exists in the DefaultController.php page of IBOS Enterprise Collaboration Management Software. An attacker is allowed to exploit the vulnerability to obtain...

SQL Injection Vulnerability in IBOS Enterprise Collaboration Management Software CategoryController.php Page

IBOS Enterprise Collaboration Management Software is a PHP-based collaborative office management system. A SQL injection vulnerability exists in the CategoryController.php page of IBOS Enterprise Collaboration Management Software. An attacker is allowed to exploit the vulnerability to obtain...

IBOS enterprise collaboration management software the latest open source version of an SQL injection

No description provided by source...

IBOS enterprise collaboration management software the latest open source version of an SQL injection 2

No description provided by source...

IBOS enterprise collaboration management software the latest open source version of an SQL injection 3

No description provided by source...

IBOS Enterprise Collaboration Management Software DiaryController.php page actionIndex function has SQL injection vulnerability

IBOS Enterprise Collaboration Management Software is a PHP-based collaborative office management system. An SQL injection vulnerability exists in the actionIndex function on the DiaryController.php page of IBOS Enterprise Collaboration Management Software. An attacker is allowed to exploit the...

IBOS enterprise collaboration management software the latest open source version of an SQL injection

No description provided by source...

IBOS Enterprise Collaboration Management software count actionRecall function has SQL injection vulnerability

IBOS Enterprise Collaboration Management Software is a PHP-based collaborative office management system. An SQL injection vulnerability exists in the actionRecall function of IBOS Enterprise Collaboration Management Software. Allow attackers to exploit the vulnerability to obtain database sensiti...