3 matches found
WWBN AVideo 操作系统命令注入漏洞
WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 29.0 contained an operating system command injection vulnerability. This vulnerability stemmed from the execAsync command in the YPTSocket notification branch, which constructed...
WWBN AVideo 操作系统命令注入漏洞
WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 29.0 contained an operating system command injection vulnerability. This vulnerability stemmed from incomplete repairs in the test.php file, which did not clean up the...
WinZip 安全漏洞
WinZip is a powerful compression and encryption tool from WinZip, Inc. A security vulnerability exists in WinZip 29.0 and earlier versions, which stems from a Mark-of-the-Web protection mechanism bypass that could lead to the execution of arbitrary code...