Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-30577

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00706EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:29 a.m.7 views

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

9.8CVSS8.8AI score0.00706EPSS
Exploits0References1
NVD
NVD
added 2023/03/16 2:15 a.m.15 views

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

9.8CVSS9.9AI score0.00706EPSS
Exploits0References2
OSV
OSV
added 2023/03/16 2:15 a.m.2 views

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

9.8CVSS7.6AI score0.00706EPSS
Exploits0References2
Prion
Prion
added 2023/03/16 2:15 a.m.18 views

Sql injection

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

7.5CVSS9.9AI score0.00706EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/16 12:0 a.m.10 views

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

9.9AI score0.00706EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/16 12:0 a.m.5 views

PT-2023-20798 · Unknown · Kirin Fortress Machine

Name of the Vulnerable Software and Affected Versions: Kirin Fortress Machine version 1.7-2020-0610 Description: A SQL Injection issue allows attackers to execute arbitrary code via the "/admin.php?controller=admin commonuser" API endpoint, specifically through the controller parameter. This...

9.8CVSS9.9AI score0.00706EPSS
Exploits0References5
CVE
CVE
added 2023/03/16 12:0 a.m.57 views

CVE-2023-26784

Kirin Fortress Machine v1.7-2020-0610 is affected by a SQL injection in the admin_commonuser endpoint (via /admin.php?controller=admin_commonuser), which can allow an attacker to execute arbitrary code. The NVD reports a critical CVSS v3.1 score (9.8) with network attack vector, no privileges, an...

9.8CVSS9.8AI score0.00706EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/03/16 12:0 a.m.3 views

Kirin Fortress Machine SQL注入漏洞

Tosec Kirin Fortress Machine is a series of fortress machines from Cosco Kirin Technology Tosec in Beijing, China. A security vulnerability exists in Kirin Fortress Machine version v.1.7-2020-0610, which stems from the presence of a SQL injection vulnerability that can be exploited by an attacker...

9.8CVSS9AI score0.00706EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/03/16 12:0 a.m.24 views

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

10AI score0.00706EPSS
Exploits0References2
CNVD
CNVD
added 2022/10/29 12:0 a.m.17 views

SQL Injection Vulnerability in Kirin Fortress of Beijing COSCO Kirin Technology Co. Ltd (CNVD-2022-86537)

KyLinFortress is an all-in-one Fortress, SSL VPN, Dynamic Password and CA Certificate. COSCO KyLin Technology Company Limited KyLin Barrier Machine suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

7.4AI score
Exploits0
CNVD
CNVD
added 2017/04/09 12:0 a.m.2 views

Command Execution Vulnerability in Kirin Bastion ethfile Parameter

Kirin Fortress is the open source operations and maintenance fortress. A command execution vulnerability exists in the ethfile parameter of KyLin Bastion Machine, which can be exploited by attackers to execute arbitrary code...

7.8AI score
Exploits0
CNVD
CNVD
added 2017/04/09 12:0 a.m.1 views

Command Execution Vulnerability in the ip Parameter of Kirin Fortress

Kirin Fortress is the open source operations and maintenance fortress. A command execution vulnerability exists in the ip parameter of the KyLinBarrier. Due to the lack of filtering of the parameter, an attacker can utilize the ip parameter to execute arbitrary commands...

7.8AI score
Exploits0
CNVD
CNVD
added 2017/04/09 12:0 a.m.4 views

Command execution vulnerability in the slaveip and virtual_ipaddress parameters of Kirin bastion machine

Kirin Fortress is the open source operations and maintenance fortress. A command execution vulnerability exists in the slaveip and virtualipaddress parameters of the KyLin Fortress, which can be exploited by an attacker to execute arbitrary code because the parameters are not specially filtered...

8AI score
Exploits0
CNVD
CNVD
added 2017/03/11 12:0 a.m.2 views

File Upload Vulnerability at Kirin Fortress Application Publishing Feature

Kirin Fortress is the open source operations and maintenance fortress. A file upload vulnerability exists at the application icon upload in the application publishing feature of KyLin Fortress. This allows attackers to upload a webshell and gain server privileges...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/03/07 12:0 a.m.2 views

File Upload Vulnerability in Kirin Fortress

Kirin Fortress is the open source operations and maintenance fortress. A file upload vulnerability exists in cadminbackup.class.php in KyLin Fortress. As a result of utilizing the default administrator account admin, password 12345678 to log into the system, in system management, software upgrade...

7.6AI score
Exploits0
Rows per page
Query Builder