CVE-2026-2668 Rongzhitong Visual Integrated Command and Dispatch Platform User add access control

A vulnerability was found in Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206. This affects an unknown function of the file /dm/dispatch/user/add of the component User Handler. The manipulation results in improper access controls. The attack may be launched remotely. The...

CVE-2026-2668

Affected product/component: Rongzhitong Visual Integrated Command and Dispatch Platform, specifically the User Handler component (file: /dm/dispatch/user/add). Root cause (as described): Improper access controls due to manipulation. Impact: Remote attacker could exploit this via a network attack ...

OPMS 跨站请求伪造漏洞

OPMS is an OA management system. v1.3 and previous versions of OPMS contain a security vulnerability that can be exploited to add arbitrary user accounts via /user/add...

rejucms cross-site scripting vulnerability (CNVD-2018-19433)

rejucms is an online video web content management system CMS. A cross-site scripting vulnerability exists in rejucms version 2.1, which stems from the program's failure to enforce strict filtering. The vulnerability can be exploited to inject arbitrary web script or HTML by sending the 'uname'...