10 matches found
EUVD-2025-29037
Malicious code in bioql PyPI...
CVE-2025-10267
NUP Portal developed by NewType Infortech has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly upload files. If the attacker manages to bypass the file extension restrictions, they could upload a webshell and execute it on the server side...
CVE-2025-10267
NUP Portal developed by NewType Infortech has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly upload files. If the attacker manages to bypass the file extension restrictions, they could upload a webshell and execute it on the server side...
CVE-2025-10267
CVE-2025-10267 affects the NUP Portal by NewType Infortech. The issue is missing authentication, allowing unauthenticated remote attackers to upload files. If file extension restrictions are bypassed, attackers could upload a webshell and execute it on the server side. Modeled across multiple fee...
CVE-2025-10267 NewType Infortech|NUP Portal - Missing Authentication
NUP Portal developed by NewType Infortech has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly upload files. If the attacker manages to bypass the file extension restrictions, they could upload a webshell and execute it on the server side...
CVE-2025-10266 NewType Infortech|NUP Portal - SQL Injection
NUP Pro developed by NewType Infortech has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
CVE-2025-10266
NUP Pro by NewType Infortech is affected by a SQL injection vulnerability that allows unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. The CVE entry indicates a critical impact (CONFIDENTIALITY, INTEGRITY, and AVAILABILITY affected) ...
CVE-2025-10266 NewType Infortech|NUP Portal - SQL Injection
NUP Pro developed by NewType Infortech has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
NewType Infortech NUP Portal 访问控制错误漏洞
NewType Infortech NUP Portal is a portal management and collaborative office software system from NewType Infortech Taiwan, China. An access control error vulnerability exists in NewType Infortech NUP Portal, which stems from a lack of authentication and could allow an unauthenticated remote...
NewType Infortech NUP Portal SQL注入漏洞
NewType Infortech NUP Portal is a portal management and collaborative office software system from NewType Infortech Taiwan, China. NewType Infortech NUP Portal suffers from a SQL injection vulnerability that originates from an unauthenticated, remote attacker who can inject arbitrary SQL commands...