Lucene search
K

1369 matches found

CNVD
CNVD
added 2020/12/12 12:0 a.m.1 views

File Upload Vulnerability in MetInfo Enterprise Website Builder System

MetInfo Enterprise Building System is a free and open source enterprise CMS. A file upload vulnerability exists in MetInfo Enterprise CMS, which can be exploited by an attacker to gain control of the server...

7.4AI score
Exploits0
CNVD
CNVD
added 2020/12/11 12:0 a.m.4 views

Command Execution Vulnerability in Accounting Practical Training Teaching Platform (CNVD-2020-75701)

The products of Xiamen NetZhongNet Software Co., Ltd. are all based on the accounting profession, with practical training as the main teaching mode, based on the principles of unit practical training, comprehensive practical training, post practical training, mixed post practical training and oth...

7.6AI score
Exploits0
CNVD
CNVD
added 2020/12/11 12:0 a.m.2 views

File Upload Vulnerability in Phisung House Website Building System

Phaethon House is an online notebook for operators and maintainers. A file upload vulnerability exists in the Phaidon House builder system that can be exploited by an attacker to gain control of the server...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/12/11 12:0 a.m.5 views

Jiajia Total Audio Format Converter is vulnerable to dll hijacking.

Jiajia All-in-One Audio Format Converter is a professional and easy-to-use audio format conversion tool, movie and video music extraction tool, audio compression tool. Jiajia Omni Audio Format Converter has a dll hijacking vulnerability, which can be exploited by attackers to gain control of the...

7.4AI score
Exploits0
NVD
NVD
added 2020/12/09 7:15 p.m.25 views

CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

7.5CVSS7.7AI score0.00586EPSS
Exploits0References1
curl security advisories
curl security advisories
added 2020/12/09 8:0 a.m.14 views

FTP wildcard stack overflow

libcurl offers a wildcard matching functionality, which allows a callback set with CURLOPTCHUNKBGNFUNCTION to return information back to libcurl on how to handle a specific entry in a directory when libcurl iterates over a list of all available entries. When this callback returns...

7.5CVSS6.9AI score0.09917EPSS
Exploits1References1Affected Software2
CNVD
CNVD
added 2020/12/08 12:0 a.m.6 views

Google Android Framework elevation of privilege vulnerability (CNVD-2021-30151)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 11. An attacker can exploit this vulnerability to gain server control...

7.8CVSS9.4AI score0.00167EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/08 12:0 a.m.2 views

Command Execution Vulnerability in Coolwell Typo Detection System

CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A command execution vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by an attacker to gain control of a server...

7.4AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.1 views

FastStone Capture suffers from dll hijacking vulnerability

FastStone Capture is an image viewing, editing and screenshotting tool. FastStone Capture suffers from a dll hijacking vulnerability. An attacker can exploit this vulnerability to gain control of the server...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.1 views

File Upload Vulnerability in Coolweather's Typo Detection System (CNVD-2020-73272)

CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A file upload vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by attackers to gain control of the server...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.2 views

File Upload Vulnerability in Coolweather's Typo Detection System (CNVD-2020-73271)

CoolWeather Typo Detection System is a typo detection system for government websites, which is able to detect typos on government website pages. A file upload vulnerability exists in CoolWeaver Typo Detection System, which can be exploited by attackers to gain control of the server...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.0 views

Binary Vulnerability in Tianrongxin TAP Series Smart Wireless AP Devices

Ltd. As a leading company in China's information security industry, TIANRONGXIN was founded in 1995 and is headquartered in Beijing. A binary vulnerability exists in Tianrongxin's TAP series Smart Wireless AP device, which can be exploited by attackers to gain control of the server...

6.8AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.1 views

Binary Vulnerability in Alcatel OAW Series Smart Wireless AP Devices

Alcatel-Lucent, a multinational company providing telecommunications hardware and software equipment and services, is headquartered in Paris, France. A binary vulnerability exists in the Alcatel OAW series of Smart Wireless AP devices. An attacker can exploit this vulnerability to gain control of...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.1 views

Binary Vulnerability in Tencent QQ Music Windows Client

QQ Music for PC is a free music player, QQ Music for PC provides users with the latest and hottest song resources and music videos for free. A DLL hijacking vulnerability exists in the Tencent QQ Music Windows client, which can be exploited by attackers to gain control of the server...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/12/08 12:0 a.m.5 views

Google Android Framework elevation of privilege vulnerability (CNVD-2021-30152)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 8.0, 8.1, 9, and 10. An attacker can exploit this vulnerability to gain...

9.3CVSS9.4AI score0.00526EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/08 12:0 a.m.7 views

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 11. An attacker can exploit this vulnerability to gain server control...

7.8CVSS7.1AI score0.00167EPSS
Exploits0References3
CNVD
CNVD
added 2020/12/07 12:0 a.m.2 views

There is a dll hijacking vulnerability in Youdao Dictionary pc side

Youdao Dictionary is the world's first all-around free language translation software based on search engine technology produced by NetEase Youdao. A dll hijacking vulnerability exists in Youdao Dictionary pc, which can be exploited by attackers to gain control of the server...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/12/07 12:0 a.m.1 views

Chianson VPN PC client suffers from dll hijacking vulnerability

Chianxin is a comprehensive group of companies focusing on providing next-generation network security products and services to governments and enterprises. A dll hijacking vulnerability exists in the Chianson VPN PC client, which can be exploited by attackers to gain control of the server...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/12/02 12:0 a.m.3 views

Jiajia All-in-One Video Format Converter is vulnerable to dll hijacking.

Jiajia All-in-One Video Format Converter is a professional, easy-to-use and smart video format converter. Jiajia All-in-One Video Format Converter suffers from a dll hijacking vulnerability, which can be exploited by an attacker to obtain server control privileges by hijacking the dll loaded when...

7AI score
Exploits0
CNVD
CNVD
added 2020/12/02 12:0 a.m.4 views

Jiajia WMV Format Converter is vulnerable to dll hijacking.

Jiajia WMV Format Converter is a professional and easy-to-use WMV video format converter. Jiajia WMV Format Converter suffers from a dll hijacking vulnerability, which can be exploited by attackers to gain server control privileges...

7.3AI score
Exploits0
Rows per page
Query Builder