Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/03/27 2:52 p.m.28 views

CVE-2026-4956 Shenzhen Ruiming Technology Streamax Crocus Parameter DevicePrint.do sql injection

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. The affected element is an unknown function of the file /DevicePrint.do?Action=ReadTask of the component Parameter Handler. The manipulation of the argument State results in sql injection. The attack can be launch...

7.5CVSS0.00318EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/27 2:51 p.m.3 views

CVE-2026-4955 Shenzhen Ruiming Technology Streamax Crocus OperateStatistic.do sql injection

A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. This impacts an unknown function of the file /OperateStatistic.do. The manipulation of the argument VehicleID results in sql injection. The attack can be launched remotely. The exploit has been made public and could ...

7.5CVSS6.8AI score0.00254EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.10 views

Shenzhen Ruiming Streamax Crocus SQL注入漏洞

Shenzhen Ruiming Streamax Crocus is a vehicle monitoring device developed by Shenzhen Ruiming. Version 1.3.44 of Shenzhen Ruiming Streamax Crocus contains an SQL injection vulnerability. This vulnerability arises from improper handling of the State parameter in the...

7.5CVSS7.2AI score0.00318EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Shenzhen Ruiming Streamax Crocus 安全漏洞

Shenzhen Ruiming Streamax Crocus is a vehicle monitoring device developed by Shenzhen Ruiming. Versions of Shenzhen Ruiming Streamax Crocus prior to 1.3.44 contained a security vulnerability. This vulnerability stemmed from improper handling of the State parameter in the file/RemoteFormat.do, whi...

7.5CVSS7.2AI score0.00259EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/17 9:31 p.m.3 views

EUVD-2025-34909

A security flaw has been discovered in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The affected element is the function uploadFile of the file /FileDir.do?Action=Upload. Performing manipulation of the argument File results in unrestricted upload. The attack is possible to be carried out...

6.5CVSS6.2AI score0.00454EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/17 8:2 p.m.10 views

CVE-2025-11913 Shenzhen Ruiming Technology Streamax Crocus Service.do download path traversal

A vulnerability has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected by this vulnerability is the function Download of the file /Service.do?Action=Download. Such manipulation of the argument Path leads to path traversal. The attack can be launched remotely. The exploit h...

5.3CVSS0.00783EPSS
Exploits1References4
OSV
OSV
added 2025/10/17 7:15 p.m.4 views

CVE-2025-11908

A security flaw has been discovered in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The affected element is the function uploadFile of the file /FileDir.do?Action=Upload. Performing manipulation of the argument File results in unrestricted upload. The attack is possible to be carried out...

8.8CVSS5.5AI score0.00454EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/10/17 6:32 p.m.2 views

CVE-2025-11908 Shenzhen Ruiming Technology Streamax Crocus FileDir.do uploadFile unrestricted upload

A security flaw has been discovered in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The affected element is the function uploadFile of the file /FileDir.do?Action=Upload. Performing manipulation of the argument File results in unrestricted upload. The attack is possible to be carried out...

6.5CVSS6.4AI score0.00454EPSS
Exploits1References4
Rows per page
Query Builder