RG-NBR700G of Beijing StarNet Network Technology Co., Ltd. has information leakage vulnerability

RG-NBR700GW is a Gigabit enterprise router. Ltd. RG-NBR700G has an information leakage vulnerability, which can be exploited by attackers to obtain sensitive information...

File Containment Vulnerability in NBR_RGOS 11.9 of Beijing StarNet Ruijie Network Technology Co.

Beijing StarNet Ruijie Network Technology Co., Ltd. is a company mainly engaged in information system integration services; Internet virtual private network services; Internet management services and other projects. A file inclusion vulnerability exists in NBRRGOS 11.9 of Beijing StarNet Ruijie...

Command Execution Vulnerability in NBR2000D of Beijing StarNet Ruijie Network Technology Co.

NBR1500D is an enterprise router from Beijing StarNet Ruijie Network Technology Co. A command execution vulnerability exists in the NBR2000D of Beijing StarNet Ruijie Network Technology Co. that can be exploited by an attacker to execute commands...

Arbitrary File Read Vulnerability in EG Easy Gateway of Beijing StarNet Ruijie Network Technology Co.

Ruijie Networks Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and so on. An arbitrary file read vulnerability exists in the EG Easy Gateway...

Command Execution Vulnerability in NBR6210-E of Beijing StarNet Ruijie Network Technology Co.

The NBR6210-E is an enterprise router from Ruijie Networks Co. A command execution vulnerability exists in the NBR6210-E of Beijing StarNet Ruijie Network Technology Co. that can be exploited by an attacker to execute arbitrary commands...

Weak Password Vulnerability in StarNet Intelligence SVG6000 Series Voice Gateway

As the core business unit for intelligent communications under StarNet Ruijie, StarNet Intelligence is a leading provider of converged communications solutions in China. A weak password vulnerability exists in the SVG6000 series voice gateway of Starnet Intelligence. An attacker can use the weak...

Command Execution Vulnerability in RG-NBS2026G at Beijing StarNet Ruijie Network Technology Co.

RG-NBS2026G is a switch launched by Beijing StarNet Ruijie Network Technology Co. A command execution vulnerability exists in the RG-NBS2026G from Beijing StarNet Ruijie Network Technology Co. Ltd. that can be exploited by an attacker to execute arbitrary commands...

Information Disclosure Vulnerability in RG-UAC Ruijie Unified Internet Behavior Management and Auditing System

RG-UAC is a self-developed Internet behavior management and auditing product developed by StarNet Ruijie Networks Co., Ltd. It is deployed at key nodes of the network in routing, transparent, bypass or hybrid modes to conduct comprehensive inspection and analysis of data at layers 2-7. The RG-UAC...

Weak password vulnerability in StarNet Ruijie's digital signage

Starnet Ruijie Digital Signage is a digital signage information platform that effectively responds to the complex information distribution environment of decentralization, fragmentation and mobility. A weak password vulnerability exists in Starnet Digital Signage, which can be exploited by an...

Arbitrary File Download Vulnerability in StarNet Ruijie Multimedia Conference System BMS

Fujian StarNet Ruijie Communication Co., Ltd. is an ICT application solution provider. An arbitrary file download vulnerability exists in the StarNet Ruijie Multimedia Conference System BMS. An attacker can exploit the vulnerability to download other files, such as a configuration file containing...

CVE-2012-1203

The CVE-2012-1203 entry describes a CSRF vulnerability in SyndeoCMS (starnet/index.php) affecting version 3.0 and earlier. The underlying issue is CSRF that allows remote attackers to hijack an administrator’s session to perform add-user actions via a save_user request. Affected component/file: s...

CVE-2008-0129

SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...

CVE-2008-0129

SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...

CVE-2008-0129

CVE-2008-0129 affects Site@School 2.3.10 and earlier. The vulnerability lies in starnet/addons/slideshow_full.php where the album_name parameter is used in a database query without proper input sanitization, causing an SQL injection. The issue enables remote attackers to execute arbitrary SQL com...

Site@School slideshow_full.php album_name Parameter SQL Injection

The remote host is running Site@School, an open source, PHP-based, content management system intended for primary schools. The version of this software installed on the remote host fails to sanitize user-supplied input to the 'albumname' parameter of the 'starnet/addons/slideshowfull.php' script...

Remote file inclusion

PHP remote file inclusion vulnerability in starnet/themes/c-sky/main.inc.php in Fred Stuurman SyndeoCMS 2.5.01 allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter, a different vector than CVE-2006-4920.2...

syndeoCMS 2.5.01 (cmsdir) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================================= syndeoCMS 2.5.01 cmsdir Remote File Inclusion Vulnerability ============================================================= -------------------------------------------- = =...

SyndeoCMS 2.5.01 - 'cmsdir' Remote File Inclusion

-------------------------------------------- = = = Mdx c 2007 = = http://www.by-mdx.com = -------------------------------------------- = = =syndeoCMS 2.5.01 cmsdir Remote File Include = = ============================================ = = Download: = = http://sourceforge.net/projects/syndeocms =...