38 matches found
EUVD-2018-9952
Malware in sbrugna...
EUVD-2018-9978
Malware in sbrugna...
EUVD-2024-16099
Malicious code in bioql PyPI...
EUVD-2024-16100
Malicious code in bioql PyPI...
CVE-2024-0304
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
CVE-2024-0303
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
CVE-2024-0303
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
CVE-2024-0304
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
CVE-2024-0304
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
CVE-2024-0303
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
Server side request forgery (ssrf)
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
Server side request forgery (ssrf)
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
CVE-2024-0304 Youke365 collect.php server-side request forgery
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
CVE-2024-0304 Youke365 collect.php server-side request forgery
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /app/api/controller/collect.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely...
CVE-2024-0304
CVE-2024-0304 affects Youke365 up to version 1.5.3. Affected component: the code path handling the file /app/api/controller/collect.php, where manipulation of the url parameter enables a server-side request forgery (SSRF). The vulnerability can be exploited remotely and the exploit has been publi...
CVE-2024-0303 Youke365 Parameter caiji.php server-side request forgery
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
CVE-2024-0303
CVE-2024-0303 affects Youke365 up to 1.5.3, with a vulnerability in /app/api/controller/caiji.php (Parameter Handler) where manipulating the url parameter enables server-side request forgery (SSRF). Reports indicate remote exploitation and public disclosure. Connected sources corroborate SSRF in ...
CVE-2024-0303 Youke365 Parameter caiji.php server-side request forgery
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is an unknown function of the file /app/api/controller/caiji.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. It is possible to launch t...
Youke365 Security Breach
Youke365 Youke365 is a professional web site navigation system of China Youke365 Youke365 company. A security vulnerability exists in Youke365 1.5.3 and earlier versions, which stems from a Server Request Forgery SSRF vulnerability in the file /app/controller/caiji.php...
PT-2024-15454 · Youke365 · Youke365
Name of the Vulnerable Software and Affected Versions: Youke365 versions up to 1.5.3 Description: A critical issue was found in the Parameter Handler component, specifically in the file /app/api/controller/caiji.php. The manipulation of the url argument leads to server-side request forgery,...