51 matches found
CVE-2019-25714 Seeyon Office Anywhere (OA) A8 Unauthenticated Arbitrary File Write via htmlofficeservlet
Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...
CVE-2019-25714
CVE-2019-25714 affects Seeyon OA A8, with an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint. The issue allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests containing base64-encoded pa...
EUVD-2019-19122
Malware in sbrugna...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system of China Tongda TONGDA. TONGDA Office Anywhere has a SQL injection vulnerability, which originates from the querystr parameter of the /module/wordmodel/view/index.php page containing a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system from China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from the ID parameter of the /pda/appcenter/checkseal.php page containing a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system from China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from the ID parameter of the /pda/appcenter/webshow.php page containing a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system of China Tongda TONGDA. TONGDA Office Anywhere has a SQL injection vulnerability that originates from the RUNID parameter of the /pda/approvecenter/prcsinfo.php page that contains a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system from China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from the ID parameter of the /pda/approvecenter/checkseal.php page containing a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system from China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from the ID parameter of the /pda/workflow/checkseal.php page containing a SQL injection vulnerability...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system of China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from an SQL injection vulnerability in the saleId parameter of the /pda/workflow/webSignSubmit.php page...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system of China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from a SQL injection vulnerability in the repid parameter of the /pda/reportshop/nextdetail.php page...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system of China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from a SQL injection vulnerability in the repid parameter of the /pda/reportshop/recorddetail.php page...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system from China Tongda TONGDA. TONGDA Office Anywhere suffers from a SQL injection vulnerability, which originates from a SQL injection vulnerability in the RUNID parameter of the /general/approvecenter/query/list/inputform/deletedataattach.ph...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017 11.10 and earlier versions, which stems from an SQL injection in the parameter whererepeat...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017 11.6 and earlier versions, which stems from SQL injection of the parameter appid...
TONGDA Office Anywhere 资源管理错误漏洞
TONGDA Office Anywhere is a collaborative office OA system. A resource management error vulnerability exists in TONGDA Office Anywhere 2017 11.7 and earlier versions that stems from resource consumption...
TONGDA Office Anywhere 授权问题漏洞
TONGDA Office Anywhere is a collaborative office OA system. An authorization issue vulnerability exists in TONGDA Office Anywhere versions 11.2 to 11.6, which arises from incorrect authorization...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017 11.9 and earlier versions, which originates from a SQL injection in the parameter dataSrc...
TONGDA Office Anywhere 安全漏洞
TONGDA Office Anywhere is a collaborative office OA system. A security vulnerability exists in TONGDA Office Anywhere v2023.12.30.1, which originates from an arbitrary file upload vulnerability in the file preview function, which can be exploited by an attacker to execute arbitrary code by...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017, which stems from the fact that incorrect operation of the parameter MIDSTR can lead to sql injection...