30 matches found
Landray EKP - Path Traversal
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
EUVD-2021-26503
Malware in sbrugna...
EUVD-2024-33696
Malicious code in bioql PyPI...
EUVD-2024-33695
Malicious code in bioql PyPI...
CVE-2024-11239
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...
CVE-2024-11238
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
CVE-2021-3159
A stored cross site scripting XSS vulnerability in the /sys/attachment/uploaderServlet component of Landray EKP V12.0.9.R.20160325 allows attackers to execute arbitrary web scripts or HTML via a crafted SVG, SHTML, or MHT file...
CVE-2024-11239
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...
CVE-2024-11239
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...
CVE-2024-11239 Landray EKP API Interface import.do deleteFile path traversal
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...
CVE-2024-11239
CVE-2024-11239 affects Landray EKP up to version 16.0, specifically the API Interface’s deleteFile function at /sys/common/import.do?method=deleteFile. The vulnerability stems from manipulation of the folder argument, enabling path traversal. It can be triggered remotely, and public disclosures e...
CVE-2024-11239 Landray EKP API Interface import.do deleteFile path traversal
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...
CVE-2024-11238
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
CVE-2024-11238
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
CVE-2024-11238 Landray EKP sysUiComponent.do delPreviewFile path traversal
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
CVE-2024-11238 Landray EKP sysUiComponent.do delPreviewFile path traversal
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...
CVE-2024-11238
Landray EKP up to version 16.0 is affected by a path traversal in delPreviewFile (/sys/ui/sys_ui_component/sysUiComponent.do?method=delPreviewFile) where manipulating the directoryPath argument allows remote exploitation. Public exploits exist; exploitation has been observed (CIRCL sightings). Af...
PT-2024-16847 · Landray · Landray Ekp
Name of the Vulnerable Software and Affected Versions: Landray EKP versions up to 16.0 Description: A critical issue was found in the function delPreviewFile of the file "/sys/ui/sys ui component/sysUiComponent.do?method=delPreviewFile". The manipulation of the directoryPath argument leads to pat...
PT-2024-16848 · Landray · Landray Ekp
Name of the Vulnerable Software and Affected Versions: Landray EKP versions up to 16.0 Description: A critical vulnerability has been found in Landray EKP, affecting the deleteFile function of the file /sys/common/import.do?method=deleteFile in the API Interface component. The manipulation of the...
Landray EKP 路径遍历漏洞
Landray EKP is an office automation solution from China's Landray Corporation that enables companies to easily model and manage their business. A path traversal vulnerability exists in Landray EKP V16.0 and earlier versions, which stems from the parameter folder in the file...