Lucene search
K

7 matches found

NVD
NVD
added 2025/12/05 4:15 p.m.4 views

CVE-2025-65897

zdhweb is a data collection, processing, monitoring, scheduling, and management platform. In zdhweb thru 5.6.17, insufficient validation of file upload paths in the application allows an authenticated user to write arbitrary files to the server file system, potentially overwriting existing files...

8.8CVSS0.00646EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/05 12:0 a.m.5 views

zdh_web 安全漏洞

zdhweb is a big data collection and extraction platform for zhaoyachao individual developers. A security vulnerability exists in zdhweb version 5.6.17 and earlier, which stems from insufficient file upload path validation, and may result in an authenticated user writing to an arbitrary file...

8.8CVSS6.6AI score0.00646EPSS
Exploits0References5
Snyk
Snyk
added 2025/04/25 3:2 p.m.31 views

Arbitrary Code Injection

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to Arbitrary Code Injection via the template rendering engine. An attacker can execute arbitrary code on the server by injecting malicious code into templates that are then executed by the serve...

10CVSS8AI score0.99803EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2019/01/31 12:0 a.m.41 views

PHP 5.6.x < 5.6.17 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote host is 5.6.x prior to 5.6.17. It is, therefore, affected by multiple vulnerabilities : - An out-of-bounds read error exists in the gdImageRotateInterpolated function in file gdinterpolation.c when handling background colors. A...

9.1CVSS9.1AI score0.07806EPSS
Exploits2References3
OSV
OSV
added 2016/01/17 12:26 a.m.21 views

MGASA-2016-0024 Updated php packages fix security vulnerability

The php package has been updated to version 5.6.17, which fixes several security issues and other bugs. See the upstream ChangeLog for more details...

9.1CVSS9.3AI score0.07806EPSS
Exploits1References3
Mageia
Mageia
added 2016/01/17 12:26 a.m.37 views

Updated php packages fix security vulnerability

The php package has been updated to version 5.6.17, which fixes several security issues and other bugs. See the upstream ChangeLog for more details...

9.1CVSS3.3AI score0.07806EPSS
Exploits1References2
OSV
OSV
added 2014/07/17 5:10 a.m.2 views

UBUNTU-CVE-2014-4214

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SRSP...

3.3CVSS6.7AI score0.03015EPSS
Exploits0References3
Rows per page
Query Builder