Lucene search
K

1369 matches found

CNVD
CNVD
added 2021/05/27 12:0 a.m.3 views

Command Execution Vulnerability in SecGate 3600

NetShen Information Technology Beijing Co., Ltd. was founded on February 08, 2006, and its business scope includes technology development, technology consulting, technology transfer, technology service; economic and trade consulting; investment consulting, etc. A command execution vulnerability...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/27 12:0 a.m.2 views

Binary vulnerability in picoTCP, picoTCP-NG

picoTCP is a small footprint, modular TCP/IP stack designed for embedded systems and the Internet of Things. A binary vulnerability exists in picoTCP, picoTCP-NG, which can be exploited by an attacker to gain server control privileges...

7.3AI score
Exploits0
CNVD
CNVD
added 2021/05/27 12:0 a.m.1 views

Command Execution Vulnerability in H2 Console at Hangzhou Hikvision Digital Technology Co.

Hangzhou Hikvision Digital Technology Co., Ltd. is a video-centered Internet of Things solution provider, offering integrated security, smart business and big data services. A command execution vulnerability exists in the H2 console of Hangzhou Hikvision Digital Technology Co. Ltd, which can be...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/27 12:0 a.m.3 views

EmpireCMS suffers from a command execution vulnerability (CNVD-2021-39306)

EmpireCMS Empire Content Management System is an open source content management system CMS. EmpireCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/26 12:0 a.m.7 views

File upload vulnerability in YFCMF backend

YFCMF is a backend content management system using ThinkPHP 5.1. + foreign ACE 1.40 UI template. A file upload vulnerability exists in the background of YFCMF, which can be exploited by attackers to gain control of the server...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/05/26 12:0 a.m.2 views

Arbitrary File Upload Vulnerability in File Information Authentication

Guangzhou Zhengwo Education Technology Co., Ltd abbreviation: Zhengwo Education is a high-tech enterprise engaged in the research and development of professional teaching management software and hardware products, computer information system integration and technical services. There is an arbitra...

7.3AI score
Exploits0
CNVD
CNVD
added 2021/05/26 12:0 a.m.2 views

Command execution vulnerability exists in Yii2 (CNVD-2021-40140)

Yii2 is a component-based PHP framework for rapid development of modern web applications. Yii2 suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.7AI score
Exploits0
CNVD
CNVD
added 2021/05/25 12:0 a.m.3 views

Command Execution Vulnerability in RG-ISG of Riptide Networks Inc.

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A command execution vulnerability exists in RG-ISG of Ruijie Networks Corporation, which ca...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/25 12:0 a.m.4 views

ESPCMS suffers from a command execution vulnerability (CNVD-2021-39839)

ESPCMS is an enterprise building management system based on PHP+MYSQL. A command execution vulnerability exists in ESPCMS, which can be exploited by attackers to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/25 12:0 a.m.3 views

Command Execution Vulnerability in Tianrongxin Access Gateway System (CNVD-2021-39841)

Skyrise Technology Group is a provider of network security, big data and cloud services. A command execution vulnerability exists in the Tianrongxin Access Gateway system, which can be exploited by an attacker to gain control of a server...

7.5AI score
Exploits0
Prion
Prion
added 2021/05/21 6:15 p.m.13 views

Unrestricted file upload

A file upload vulnerability was discovered in the file path /bl-plugins/backup/plugin.php on Bludit version 3.12.0. If an attacker is able to gain Administrator rights they will be able to use unsafe plugins to upload a backup file and control the server...

6.5CVSS7AI score0.01102EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2021/05/21 12:0 a.m.7 views

Command Execution Vulnerability in CareyShop

CareyShop referred to as CS is an open source mall framework based on ThinkPHP framework development system. A command execution vulnerability exists in CareyShop. An attacker can exploit this vulnerability to gain control of the web server...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.2 views

Code Execution Vulnerability in ZZCMS asp Version

ZZCMS is a completely open source based on PHP, ASP's product investment website management system , project investment website management system , enterprise website management system . ZZCMS asp version of the existence of code execution vulnerabilities , attackers can use the vulnerability to...

7.7AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.3 views

File Upload Vulnerability in Fisheye CMS (CNVD-2021-39271)

FishLeap CMS is a content management system specifically geared towards enterprise applications. A file upload vulnerability exists in Fishy CMS, which can be exploited by an attacker to write a malicious file to gain server control privileges...

7.3AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.1 views

File Containment Vulnerability in Netnifty Next Generation Extreme Firewall

NetShen Information Technology Beijing Co., Ltd. is a high-tech information security solution, product and service provider integrating technology research and development, manufacturing and comprehensive service. A file inclusion vulnerability exists in NetShen's next-generation Extreme Firewall...

7.2AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.2 views

Binary Vulnerability in FWB, FAC Series Routers of Shenzhen Xunjie Communication Technology Co.

FWB, FAC series is a router from Shenzhen Xunjie Communication Technology Co., Ltd, including FWB201S, FWB505, FAC1203R, FWB201, FAC1900R, FWB200, FAC1200R and so on. A binary vulnerability exists in the FWB, FAC series routers of Shenzhen Xunjie Communication Technology Co. Ltd, which can be...

7.3AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.2 views

CatfishCMS suffers from a file upload vulnerability (CNVD-2021-39235)

CatfishCMS is a free and open source PHP content management system. A file upload vulnerability exists in CatfishCMS, which can be exploited by attackers to gain control of the server...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/18 12:0 a.m.5 views

Command Execution Vulnerability in ZXV10 M910 Conference Management System

ZTE Corporation is a leading global provider of integrated communications solutions. A command execution vulnerability exists in the ZXV10 M910 conference management system, which can be exploited by an attack to gain server control privileges...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/17 12:0 a.m.1 views

Command execution vulnerability in YCCMS (CNVD-2021-37966)

YCCMS is a PHP version of a lightweight CMS builder. YCCMS has a command execution vulnerability that can be exploited by attackers to gain control of the server...

7.7AI score
Exploits0
CNVD
CNVD
added 2021/05/17 12:0 a.m.4 views

YCCMS suffers from a file upload vulnerability (CNVD-2021-37964)

YCCMS is a PHP version of a lightweight CMS builder. YCCMS has a file upload vulnerability that can be exploited by attackers to gain control of the server...

7.5AI score
Exploits0
Rows per page
Query Builder