Lucene search
K

19 matches found

CNNVD
CNNVD
added 2026/02/04 12:0 a.m.12 views

Hillstone Operation and Maintenance Security Gateway 安全漏洞

Hillstone Operation and Maintenance Security Gateway is a network operation and maintenance management platform developed by Hillstone Corporation. Version V5.5ST00001B113 of the Hillstone Operation and Maintenance Security Gateway contains a security vulnerability. This vulnerability stems from...

2.7CVSS5.8AI score0.00311EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 3:15 a.m.8 views

CVE-2026-1414

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This impacts the function getInformation of the file /equipment/getInformation of the component HTTP POST Request Handler. Executing a manipulation of the argument fortEquipmentIp can lead...

9.8CVSS0.04451EPSS
Exploits1References4
EUVD
EUVD
added 2026/01/26 1:2 a.m.3 views

EUVD-2026-4686

A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. The impacted element is an unknown function of the file /fort/audit/getclipimg of the component HTTP POST Request Handler. Such manipulation of the argument frame/dirno leads to command...

7.5CVSS5.6AI score0.03946EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/22 1:2 p.m.5 views

CVE-2026-1324 Sangfor Operation and Maintenance Management System SSH Protocol session SessionController os command injection

A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12. Affected by this issue is the function SessionController of the file /isomp-protocol/protocol/session of the component SSH Protocol Handler. The manipulation of the argument keypassword leads to os...

9CVSS5.3AI score0.06437EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/01/22 1:2 p.m.5 views

CVE-2026-1324

A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12. Affected by this issue is the function SessionController of the file /isomp-protocol/protocol/session of the component SSH Protocol Handler. The manipulation of the argument keypassword leads to os...

9.8CVSS7.5AI score0.06437EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/10 9:15 a.m.12 views

CVE-2025-15503

A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to 3.0.8. The impacted element is an unknown function of the file /fort/trust/version/common/common.jsp. Performing a manipulation of the argument File results in unrestricted upload. The attack is...

9.8CVSS5.4AI score0.01907EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/10 9:2 a.m.9 views

EUVD-2026-1856

A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to 3.0.8. The impacted element is an unknown function of the file /fort/trust/version/common/common.jsp. Performing a manipulation of the argument File results in unrestricted upload. The attack is...

7.5CVSS7.1AI score0.01907EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/01/10 8:2 a.m.33 views

CVE-2025-15502 Sangfor Operation and Maintenance Management System session SessionController os command injection

A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.8. The affected element is the function SessionController of the file /isomp-protocol/protocol/session. Such manipulation of the argument Hostname leads to os command injection. The attack can be...

7.5CVSS0.05577EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/10 12:30 a.m.5 views

EUVD-2025-206269

A vulnerability has been found in Sangfor Operation and Maintenance Management System up to 3.0.8. This vulnerability affects the function uploadCN of the file VersionController.java. The manipulation of the argument filename leads to os command injection. The attack may be initiated remotely. Th...

9CVSS6.4AI score0.05271EPSS
Exploits1References6
EUVD
EUVD
added 2026/01/10 12:30 a.m.9 views

EUVD-2025-206270

A vulnerability was found in Sangfor Operation and Maintenance Management System up to 3.0.8. This issue affects some unknown processing of the file /isomp-protocol/protocol/getHis of the component HTTP POST Request Handler. The manipulation of the argument sessionPath results in os command...

10CVSS6.5AI score0.05593EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2015-8218

Malware in sbrugna...

8.8CVSS8.8AI score0.00863EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8215

Malware in sbrugna...

7.4CVSS7.5AI score0.00843EPSS
Exploits0References2
CNVD
CNVD
added 2023/11/20 12:0 a.m.42 views

File Upload Vulnerability in Yonghong BI of Beijing Yonghong Business Intelligence Technology Co.

Beijing Yonghong Business Intelligence Technology Co., Ltd. is committed to providing global enterprises with big data technology products and services, relying on independent intellectual property rights of the one-stop big data platform to form a perfect product and service system, with...

7.4AI score
Exploits0
OSV
OSV
added 2023/08/10 5:42 p.m.17 views

CVE-2023-39965 1Panel Unauthorized access in Backend

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may caus...

6.5CVSS5.3AI score0.00382EPSS
Exploits1References4
CNVD
CNVD
added 2022/02/28 12:0 a.m.7 views

WeBankPartners wecube-platform目录遍历漏洞

WeCube is a set of open source , one-stop It architecture management and operation and maintenance management tools . WeBankPartners wecube-platform version has a directory traversal vulnerability, which can be exploited to traverse the server directory...

7.5CVSS3.2AI score0.01487EPSS
Exploits1References1
OSV
OSV
added 2018/02/15 4:29 p.m.2 views

CVE-2017-15329

Huawei UMA V200R001C00 has a SQL injection vulnerability in the operation and maintenance module. An attacker logs in to the system as a common user and sends crafted HTTP requests that contain malicious SQL statements to the affected system. Due to a lack of input validation on HTTP requests tha...

8.8CVSS6.1AI score0.00916EPSS
Exploits0References1
NVD
NVD
added 2017/08/29 3:29 p.m.17 views

CVE-2015-8334

SQL injection vulnerability in the Operation and Maintenance Unit OMU in Huawei VCN500 before V100R002C00SPC201 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request...

8.8CVSS8.8AI score0.00863EPSS
Exploits0References1
myhack58
myhack58
added 2015/01/04 12:0 a.m.23 views

Cool official silent install apk features background the presence of high-risk vulnerabilities(demo custom machine is how in your phone silently installed)-bug warning-the black bar safety net

Cool Demo junk software is how to through your mobile phone to silently install Suction fee software what is going on. You charge less? Detailed description: Cool a operation and maintenance improper shell. ! ! ! ok See under background: http://auth.coolyun.com ! Background PUSH features APK sile...

0.6AI score
Exploits0
myhack58
myhack58
added 2014/05/13 12:0 a.m.11 views

Cherished network of two operation and maintenance improper lead the attacker into the internal network get database-vulnerability warning-the black bar safety net

Cherished network of two operation and maintenance improper lead the attacker into the internal network get database Cherished network two operations, the first of May into the internal network, the other available at the three libraries of the password, but I even didn't even, the only prove...

2.1AI score
Exploits0
Rows per page
Query Builder