214 matches found
PT-2024-24187 · Shibang Communications · Shibang Communications Co.
Name of the Vulnerable Software and Affected Versions: Shibang Communications Co., Ltd. IP network intercom broadcasting system version 1.0 Description: The issue allows a local attacker to execute arbitrary code via the my parser.php component. This is a result of a File Upload vulnerability in...
IP Network Intercom Broadcasting System 安全漏洞
Spon IP Network Intercom Broadcasting System is an IP network based intercom broadcasting system from Spon Communications China. A security vulnerability exists in IP Network Intercom Broadcasting System version 1.0, which is caused by a file upload vulnerability. The vulnerability can be exploit...
CVE-2024-31680
CVE-2024-31680 affects Shibang Communications Co., Ltd. IP network intercom broadcasting system version 1.0. The vulnerability is a file upload flaw in the my_parser.php component, enabling a local attacker to execute arbitrary code. The available documents consistently describe this risk as a lo...
CVE-2024-3218 Shibang Communications IP Network Intercom Broadcasting System busyscreenshotpush.php path traversal
A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondatacallee/jsondataimagename leads to path traversal: '../filedir...
CVE-2024-3218 Shibang Communications IP Network Intercom Broadcasting System busyscreenshotpush.php path traversal
A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondatacallee/jsondataimagename leads to path traversal: '../filedir...
CVE-2024-3218
The CVE-2024-3218 entry affects Shibang Communications IP Network Intercom Broadcasting System v1.0, specifically the /php/busyscreenshotpush.php endpoint. The vulnerability arises from path traversal via manipulation of jsondata[callee]/jsondata[imagename] to escalate outside the intended direct...
PT-2024-24456 · Shibang Communications · Shibang Communications Ip Network Intercom Broadcasting System
Name of the Vulnerable Software and Affected Versions: Shibang Communications IP Network Intercom Broadcasting System version 1.0 Description: A critical vulnerability has been found in the Shibang Communications IP Network Intercom Broadcasting System. This issue affects an unknown part of the...
IP Network Intercom Broadcasting System 安全漏洞
Spon IP Network Intercom Broadcasting System is an IP network based intercom broadcasting system from Spon Communications China. A security vulnerability exists in IP Network Intercom Broadcasting System version 1.0, which is caused by path traversal due to misuse of the parameter...
Exploit for OS Command Injection in Hikvision Intercom_Broadcast_System
CVE-2023-6895 Vulnerability Scanner This is a simple Python s...
CVE-2023-6895
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondataip with the input netstat -ano leads to os command injection...
CVE-2023-6894
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...
CVE-2023-6894
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...
Command injection
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondataip with the input netstat -ano leads to os command injection...
Design/Logic Flaw
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...
CVE-2023-6895 Hikvision Intercom Broadcasting System ping.php os command injection
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondataip with the input netstat -ano leads to os command injection...
CVE-2023-6895
Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) contains an OS command injection in /php/ping.php via jsondata[ip], where the attacker-provided input (e.g., netstat -ano) can execute commands. Public exploit details exist; upgrading to version 4.1.0 addresses the issue.
CVE-2023-6895 Hikvision Intercom Broadcasting System ping.php os command injection
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondataip with the input netstat -ano leads to os command injection...
CVE-2023-6894 Hikvision Intercom Broadcasting System Log File system.html information disclosure
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...
CVE-2023-6894 Hikvision Intercom Broadcasting System Log File system.html information disclosure
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...
CVE-2023-6894
The CVE-2023-6894 entry concerns Hikvision Intercom Broadcasting System 3.0.3_20201113 RELEASE (HIK) with vulnerability in the Log File Handler’s file system.html (access/html/system.html). The exploit enables information disclosure through manipulation of that component. Multiple sources confirm...