27 matches found
EUVD-2023-58518
Malicious code in bioql PyPI...
EUVD-2024-32585
Malicious code in bioql PyPI...
EUVD-2024-31936
Malicious code in bioql PyPI...
EUVD-2024-32107
Malicious code in bioql PyPI...
CVE-2024-4019
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up to 20240411. Affected is an unknown function of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. It is possible to launch the attack remotely. The exploit has...
CVE-2024-3346
A vulnerability was found in Byzoro Smart S80 up to 20240328. It has been declared as critical. This vulnerability affects unknown code of the file /log/webmailattach.php. The manipulation of the argument mailfilepath leads to os command injection. The attack can be initiated remotely. The exploi...
CVE-2023-6274
A vulnerability was found in Byzoro Smart S80 up to 20231108. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /sysmanage/updatelib.php of the component PHP File Handler. The manipulation of the argument fileupload leads to unrestricted...
CVE-2024-4019
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up to 20240411. Affected is an unknown function of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. It is possible to launch the attack remotely. The exploit has...
CVE-2024-4019 Byzoro Smart S80 Management Platform importhtml.php deserialization
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up to 20240411. Affected is an unknown function of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. It is possible to launch the attack remotely. The exploit has...
CVE-2024-4019
CVE-2024-4019 affects Byzoro Smart S80 Management Platform (up to 20240411). The vulnerability is in an unknown function of /importhtml.php, where manipulation of the sql argument leads to deserialization. It enables a remote attack and the exploit has been disclosed publicly. Multiple sources (N...
CVE-2024-4019 Byzoro Smart S80 Management Platform importhtml.php deserialization
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up to 20240411. Affected is an unknown function of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. It is possible to launch the attack remotely. The exploit has...
Byzro Networks Smart S80 Management Platform 代码问题漏洞
Byzro Networks Smart S80 is an Internet behavior management product from Byzro Networks. A code issue vulnerability exists in Byzro Networks Smart S80 Management Platform, which originates from /importhtml.php containing an unknown function that causes deserialization via the parameter sql...
CVE-2024-3521
A vulnerability was found in Byzoro Smart S80 Management Platform up to 20240317. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be...
CVE-2024-3521 Byzoro Smart S80 Management Platform userattestation.php unrestricted upload
A vulnerability was found in Byzoro Smart S80 Management Platform up to 20240317. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be...
CVE-2024-3521
The CVE-2024-3521 case covers Byzoro Smart S80 Management Platform (versions up to 20240317). The root cause is in /useratte/userattestation.php where the web_img parameter enables unrestricted upload, enabling a remote attacker to upload arbitrary content. Documents indicate the vulnerability is...
CVE-2024-3521 Byzoro Smart S80 Management Platform userattestation.php unrestricted upload
A vulnerability was found in Byzoro Smart S80 Management Platform up to 20240317. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be...
Byzro Networks Smart S80 代码问题漏洞
Byzro Networks Smart S80 is an Internet behavior management product from Byzro Networks. A code issue vulnerability exists in Byzro Smart S80 Management Platform 20240317 and prior versions, which stems from an unknown function in /useratte/userattestation.php that causes unrestricted uploads via...
CVE-2024-3346
A vulnerability was found in Byzoro Smart S80 up to 20240328. It has been declared as critical. This vulnerability affects unknown code of the file /log/webmailattach.php. The manipulation of the argument mailfilepath leads to os command injection. The attack can be initiated remotely. The exploi...
CVE-2024-3346 Byzoro Smart S80 webmailattach.php os command injection
A vulnerability was found in Byzoro Smart S80 up to 20240328. It has been declared as critical. This vulnerability affects unknown code of the file /log/webmailattach.php. The manipulation of the argument mailfilepath leads to os command injection. The attack can be initiated remotely. The exploi...
CVE-2024-3346
Byzoro Smart S80 (up to 20240328) contains an OS command injection vulnerability in /log/webmailattach.php via the mail_file_path parameter. This can be exploited remotely; the exploit has been disclosed publicly (VDB-259450). Affected product/version information is limited to the Byzoro Smart S8...