Lucene search
+L

46 matches found

CNVD
CNVD
added 2020/03/15 12:0 a.m.3 views

Jiaxing Wantsky Information Technology Co., Ltd. OpenSNS_v6.2.0 file upload vulnerabilities exist

OpenSNS is a comprehensive social networking software developed by Thinking Sky. You can use OpenSNS to quickly build a social networking site similar to the same social networking site as New Wave Microblogging. OpenSNSv6.2.0 has a file upload vulnerability that can be exploited by attackers to...

7AI score
Exploits0
CNVD
CNVD
added 2020/01/01 12:0 a.m.1 views

SQL Injection Vulnerability in opensns system

OpenSNS is an open-source social networking system from Jiaxing Wantsky Information Technology Company in China. The opensns system suffers from a SQL injection vulnerability, which can be exploited by an attacker to obtain sensitive information from the database...

7.5AI score
Exploits0
CNVD
CNVD
added 2019/11/18 12:0 a.m.1 views

SQL Injection Vulnerability in OpenSNS Backend

OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the OpenSNS backend, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/11/18 12:0 a.m.2 views

SQL Injection Vulnerability in OpenSNS Backend

OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the OpenSNS backend, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/11/15 12:0 a.m.1 views

SQL Injection Vulnerability in opensns Backend

OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the opensns backend, which can be exploited by attackers to obtain sensitive information from the database...

7.6AI score
Exploits0
CNVD
CNVD
added 2019/11/14 12:0 a.m.3 views

Arbitrary File Download Vulnerability in OpenSNS Backend

OpenSNS is a comprehensive social software developed by Thinking Sky. OpenSNS has an arbitrary file download vulnerability in the background, which can be exploited by an attacker to compress and download the code of the entire site...

7.2AI score
Exploits0
CNVD
CNVD
added 2019/10/25 12:0 a.m.1 views

OpenSNS suffers from information leakage vulnerability

OpenSNS is a comprehensive social software developed by Thinking Sky. OpenSNS suffers from an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

6.2AI score
Exploits0
CNVD
CNVD
added 2019/10/21 12:0 a.m.2 views

File Inclusion Vulnerability in opensns

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. A file inclusion vulnerability exists in OpenSNS, which can be exploited by an attacker to gain control of the web server...

7.1AI score
Exploits0
CNVD
CNVD
added 2019/09/02 12:0 a.m.3 views

Code Execution Vulnerability in OpenSNS

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. A code execution vulnerability exists in OpenSNS, which can be exploited by an attacker to gain control of the web server...

7.8AI score
Exploits0
CNVD
CNVD
added 2019/07/26 12:0 a.m.5 views

OpenSNS SQL Injection Vulnerability

OpenSNS is a Comprehensive Social Software developed by Thinking Sky Technology. A SQL injection vulnerability exists in OpenSNS 6.1.0. An attacker can exploit this vulnerability by using the index.php?s=/ucenter/Config/ uid parameter to perform a SQL injection attack...

8.8CVSS9.1AI score0.01269EPSS
Exploits1References1
NVD
NVD
added 2019/07/25 4:15 p.m.21 views

CVE-2019-14266

OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php...

8.8CVSS9.2AI score0.01269EPSS
Exploits1References1
OSV
OSV
added 2019/07/25 4:15 p.m.6 views

CVE-2019-14266

OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php...

8.8CVSS7.4AI score0.01269EPSS
Exploits1References1
Prion
Prion
added 2019/07/25 4:15 p.m.18 views

Sql injection

OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php...

6.5CVSS9.1AI score0.01269EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/07/25 3:7 p.m.41 views

CVE-2019-14266

OpenSNS v6.1.0 is affected by an SQL injection in the index.php?s=/ucenter/Config/ uid parameter caused by the getNeedQueryData function in Application/Common/Model/UserModel.class.php. The issue enables manipulation of SQL queries via the uid parameter, as documented by multiple sources (e.g., C...

8.8CVSS9.1AI score0.01269EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/07/25 3:7 p.m.35 views

CVE-2019-14266

OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php...

9.2AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/25 12:0 a.m.1 views

SQL injection vulnerability in opensns open source community system

Jiaxing Thinksky Information Technology Co., Ltd. focuses on providing customers with specialized social solutions. opensns open source community system has a SQL injection vulnerability, attackers can use the vulnerability to obtain database information...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/07/17 12:0 a.m.1 views

Code Execution Vulnerability in OPENSNS Backend

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. A code execution vulnerability exists in the OPENSNS backend, which can be exploited by an attacker to gain control of the web server...

7.8AI score
Exploits0
CNVD
CNVD
added 2019/07/13 12:0 a.m.1 views

Code Execution Vulnerability in OpenSNS V5

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. A code execution vulnerability exists in OpenSNS, which can be exploited by an attacker to obtain server information...

7.5AI score
Exploits0
CNVD
CNVD
added 2019/07/13 12:0 a.m.2 views

SQL Injection Vulnerability in the Frontend of the Latest Version of OpenSNS

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. The latest version of OpenSNS has a SQL injection vulnerability in the frontend, which can be exploited by attackers to obtain database informatio...

8AI score
Exploits0
CNVD
CNVD
added 2019/06/04 12:0 a.m.4 views

File Upload Vulnerability in OpenSNS

OpenSNS is a lightweight social user center framework based on OneThink. The system adheres to a minimalist design style and focuses on communication. A file upload vulnerability exists in OpenSNS. The vulnerability is due to the program when uploading zip files, automatically decompress the zip...

7.2AI score
Exploits0
Rows per page
Query Builder