1369 matches found
Command Execution Vulnerability in SecGate 3600
NetShen Information Technology Beijing Co., Ltd. was founded on February 08, 2006, and its business scope includes technology development, technology consulting, technology transfer, technology service; economic and trade consulting; investment consulting, etc. A command execution vulnerability...
Binary vulnerability in picoTCP, picoTCP-NG
picoTCP is a small footprint, modular TCP/IP stack designed for embedded systems and the Internet of Things. A binary vulnerability exists in picoTCP, picoTCP-NG, which can be exploited by an attacker to gain server control privileges...
Command Execution Vulnerability in H2 Console at Hangzhou Hikvision Digital Technology Co.
Hangzhou Hikvision Digital Technology Co., Ltd. is a video-centered Internet of Things solution provider, offering integrated security, smart business and big data services. A command execution vulnerability exists in the H2 console of Hangzhou Hikvision Digital Technology Co. Ltd, which can be...
EmpireCMS suffers from a command execution vulnerability (CNVD-2021-39306)
EmpireCMS Empire Content Management System is an open source content management system CMS. EmpireCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...
File upload vulnerability in YFCMF backend
YFCMF is a backend content management system using ThinkPHP 5.1. + foreign ACE 1.40 UI template. A file upload vulnerability exists in the background of YFCMF, which can be exploited by attackers to gain control of the server...
Arbitrary File Upload Vulnerability in File Information Authentication
Guangzhou Zhengwo Education Technology Co., Ltd abbreviation: Zhengwo Education is a high-tech enterprise engaged in the research and development of professional teaching management software and hardware products, computer information system integration and technical services. There is an arbitra...
Command execution vulnerability exists in Yii2 (CNVD-2021-40140)
Yii2 is a component-based PHP framework for rapid development of modern web applications. Yii2 suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...
Command Execution Vulnerability in RG-ISG of Riptide Networks Inc.
Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A command execution vulnerability exists in RG-ISG of Ruijie Networks Corporation, which ca...
ESPCMS suffers from a command execution vulnerability (CNVD-2021-39839)
ESPCMS is an enterprise building management system based on PHP+MYSQL. A command execution vulnerability exists in ESPCMS, which can be exploited by attackers to gain control of the server...
Command Execution Vulnerability in Tianrongxin Access Gateway System (CNVD-2021-39841)
Skyrise Technology Group is a provider of network security, big data and cloud services. A command execution vulnerability exists in the Tianrongxin Access Gateway system, which can be exploited by an attacker to gain control of a server...
Unrestricted file upload
A file upload vulnerability was discovered in the file path /bl-plugins/backup/plugin.php on Bludit version 3.12.0. If an attacker is able to gain Administrator rights they will be able to use unsafe plugins to upload a backup file and control the server...
Command Execution Vulnerability in CareyShop
CareyShop referred to as CS is an open source mall framework based on ThinkPHP framework development system. A command execution vulnerability exists in CareyShop. An attacker can exploit this vulnerability to gain control of the web server...
Code Execution Vulnerability in ZZCMS asp Version
ZZCMS is a completely open source based on PHP, ASP's product investment website management system , project investment website management system , enterprise website management system . ZZCMS asp version of the existence of code execution vulnerabilities , attackers can use the vulnerability to...
File Upload Vulnerability in Fisheye CMS (CNVD-2021-39271)
FishLeap CMS is a content management system specifically geared towards enterprise applications. A file upload vulnerability exists in Fishy CMS, which can be exploited by an attacker to write a malicious file to gain server control privileges...
File Containment Vulnerability in Netnifty Next Generation Extreme Firewall
NetShen Information Technology Beijing Co., Ltd. is a high-tech information security solution, product and service provider integrating technology research and development, manufacturing and comprehensive service. A file inclusion vulnerability exists in NetShen's next-generation Extreme Firewall...
Binary Vulnerability in FWB, FAC Series Routers of Shenzhen Xunjie Communication Technology Co.
FWB, FAC series is a router from Shenzhen Xunjie Communication Technology Co., Ltd, including FWB201S, FWB505, FAC1203R, FWB201, FAC1900R, FWB200, FAC1200R and so on. A binary vulnerability exists in the FWB, FAC series routers of Shenzhen Xunjie Communication Technology Co. Ltd, which can be...
CatfishCMS suffers from a file upload vulnerability (CNVD-2021-39235)
CatfishCMS is a free and open source PHP content management system. A file upload vulnerability exists in CatfishCMS, which can be exploited by attackers to gain control of the server...
Command Execution Vulnerability in ZXV10 M910 Conference Management System
ZTE Corporation is a leading global provider of integrated communications solutions. A command execution vulnerability exists in the ZXV10 M910 conference management system, which can be exploited by an attack to gain server control privileges...
Command execution vulnerability in YCCMS (CNVD-2021-37966)
YCCMS is a PHP version of a lightweight CMS builder. YCCMS has a command execution vulnerability that can be exploited by attackers to gain control of the server...
YCCMS suffers from a file upload vulnerability (CNVD-2021-37964)
YCCMS is a PHP version of a lightweight CMS builder. YCCMS has a file upload vulnerability that can be exploited by attackers to gain control of the server...