CivetWeb 代码问题漏洞

CivetWeb is an open-source web server developed by Civetweb, designed to be easy to use, powerful, and capable of being embedded in C/C++. It offers optional support for CGI, SSL, and Lua. Version 1.16 of CivetWeb contains a code vulnerability. This vulnerability stems from search paths in servic...

CVE-2020-37160

SprintWork 2.3.1 contains multiple local privilege escalation vulnerabilities through insecure file, service, and folder permissions on Windows systems. Local unprivileged users can exploit missing executable files and weak service configurations to create a new administrative user and gain...

NETGATE Amiti Antivirus 代码问题漏洞

NETGATE Amiti Antivirus is a antivirus software developed by the Slovak company NETGATE. Version 25.0.640 of NETGATE Amiti Antivirus has a code vulnerability. This vulnerability stems from service paths in Windows service configurations that are not properly quoted, which may allow attackers to...

PT-2026-5803

Name of the Vulnerable Software and Affected Versions Amiti Antivirus version 25.0.640 Description Amiti Antivirus contains an unquoted service path vulnerability in its Windows service configurations. This allows attackers to inject and execute malicious code with elevated LocalSystem privileges...

NETGATE Spy Emergency security vulnerability

NETGATE Spy Emergency is a Trojan virus detection and removal software developed by the Slovak company NETGATE. Version 25.0.650 of NETGATE Spy Emergency contains a security vulnerability. This vulnerability stems from the use of service paths without quotes in Windows service configurations, whi...

PT-2026-3150

Name of the Vulnerable Software and Affected Versions Brother BRPrint Auditor version 3.0.7 Description The software contains an unquoted service path vulnerability in its Windows service configurations. This allows local attackers to potentially execute arbitrary code. Attackers can exploit...

MadeForNet HTTP Debugger Pro code issues and vulnerabilities

MadeForNet HTTP Debugger Pro is an HTTP/HTTPS protocol packet capture and analysis tool developed by the American company MadeForNet. Version 9.11 of MadeForNet HTTP Debugger Pro contains a code vulnerability. This vulnerability stems from binary paths in service configurations that lack quotatio...

Cross site scripting

A cross site scripting vulnerability exists in some map service configurations of ArcGIS Server versions 10.8.1 and 10.7.1. Specifically crafted web requests can execute arbitrary JavaScript in the context of the victim's browser...

Arbitrary File Read Vulnerability in VoIP Operation Support System of Kunshi Network Technology Co.

The VoIP operation support system of Kunshi Network Technology Co., Ltd. is a support system for small and medium-sized VoIP operation business. The product suffers from an arbitrary file read vulnerability, which can be exploited by an attacker to read sensitive files such as service...