1369 matches found
File Upload Vulnerability in MetInfo Enterprise Website Builder System
MetInfo Enterprise Building System is a free and open source enterprise CMS. A file upload vulnerability exists in MetInfo Enterprise CMS, which can be exploited by an attacker to gain control of the server...
Command Execution Vulnerability in Accounting Practical Training Teaching Platform (CNVD-2020-75701)
The products of Xiamen NetZhongNet Software Co., Ltd. are all based on the accounting profession, with practical training as the main teaching mode, based on the principles of unit practical training, comprehensive practical training, post practical training, mixed post practical training and oth...
File Upload Vulnerability in Phisung House Website Building System
Phaethon House is an online notebook for operators and maintainers. A file upload vulnerability exists in the Phaidon House builder system that can be exploited by an attacker to gain control of the server...
Jiajia Total Audio Format Converter is vulnerable to dll hijacking.
Jiajia All-in-One Audio Format Converter is a professional and easy-to-use audio format conversion tool, movie and video music extraction tool, audio compression tool. Jiajia Omni Audio Format Converter has a dll hijacking vulnerability, which can be exploited by attackers to gain control of the...
CVE-2020-28086
pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...
FTP wildcard stack overflow
libcurl offers a wildcard matching functionality, which allows a callback set with CURLOPTCHUNKBGNFUNCTION to return information back to libcurl on how to handle a specific entry in a directory when libcurl iterates over a list of all available entries. When this callback returns...
Google Android Framework elevation of privilege vulnerability (CNVD-2021-30151)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 11. An attacker can exploit this vulnerability to gain server control...
Command Execution Vulnerability in Coolwell Typo Detection System
CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A command execution vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by an attacker to gain control of a server...
FastStone Capture suffers from dll hijacking vulnerability
FastStone Capture is an image viewing, editing and screenshotting tool. FastStone Capture suffers from a dll hijacking vulnerability. An attacker can exploit this vulnerability to gain control of the server...
File Upload Vulnerability in Coolweather's Typo Detection System (CNVD-2020-73272)
CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A file upload vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by attackers to gain control of the server...
File Upload Vulnerability in Coolweather's Typo Detection System (CNVD-2020-73271)
CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A file upload vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by attackers to gain control of the server...
Binary Vulnerability in Tianrongxin TAP Series Smart Wireless AP Devices
Ltd. As a leading company in China's information security industry, TIANRONGXIN was founded in 1995 and is headquartered in Beijing. A binary vulnerability exists in Tianrongxin's TAP series Smart Wireless AP device, which can be exploited by attackers to gain control of the server...
Binary Vulnerability in Alcatel OAW Series Smart Wireless AP Devices
Alcatel-Lucent, a multinational company providing telecommunications hardware and software equipment and services, is headquartered in Paris, France. A binary vulnerability exists in the Alcatel OAW series of Smart Wireless AP devices. An attacker can exploit this vulnerability to gain control of...
Binary Vulnerability in Tencent QQ Music Windows Client
QQ Music for PC is a free music player, QQ Music for PC provides users with the latest and hottest song resources and music videos for free. A DLL hijacking vulnerability exists in the Tencent QQ Music Windows client, which can be exploited by attackers to gain control of the server...
Google Android Framework elevation of privilege vulnerability (CNVD-2021-30152)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 8.0, 8.1, 9, and 10. An attacker can exploit this vulnerability to gain...
Google Android 安全漏洞
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 11. An attacker can exploit this vulnerability to gain server control...
There is a dll hijacking vulnerability in Youdao Dictionary pc side
Youdao Dictionary is the world's first all-around free language translation software based on search engine technology produced by NetEase Youdao. A dll hijacking vulnerability exists in Youdao Dictionary pc, which can be exploited by attackers to gain control of the server...
Chianson VPN PC client suffers from dll hijacking vulnerability
Chianxin is a comprehensive group of companies focusing on providing next-generation network security products and services to governments and enterprises. A dll hijacking vulnerability exists in the Chianson VPN PC client, which can be exploited by attackers to gain control of the server...
Jiajia All-in-One Video Format Converter is vulnerable to dll hijacking.
Jiajia All-in-One Video Format Converter is a professional, easy-to-use and smart video format converter. Jiajia All-in-One Video Format Converter suffers from a dll hijacking vulnerability, which can be exploited by an attacker to obtain server control privileges by hijacking the dll loaded when...
Jiajia WMV Format Converter is vulnerable to dll hijacking.
Jiajia WMV Format Converter is a professional and easy-to-use WMV video format converter. Jiajia WMV Format Converter suffers from a dll hijacking vulnerability, which can be exploited by attackers to gain server control privileges...