2 matches found
CVE-2025-40678 Unrestricted upload vulnerability for dangerous file types on Summar Software´s Portal del Empleado
Unrestricted upload vulnerability for dangerous file types on Summar Software´s Portal del Empleado. This vulnerability allows an attacker to upload a dangerous file type by sending a POST request using the parameter “cctl00$ContentPlaceHolder1$fuAdjunto” in “/MemberPages/ntfabsentismo.aspx”...
Summar Portal del Empleado SQL注入漏洞
Summar Portal del Empleado is an employee portal system from Summar Spain. Summar Portal del Empleado suffers from an SQL injection vulnerability that stems from incorrect manipulation of the parameter ctl00$ContentPlaceHolder1$filtroNombre in the file /MemberPages/quienesquien.aspx, which could...