Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:47 a.m.5 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.8AI score0.00567EPSS
Exploits0References1
NVD
NVD
added 2024/10/11 4:15 p.m.9 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS0.00567EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/11 12:0 a.m.12 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

0.00567EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/11 12:0 a.m.5 views

Zhejiang University Entersoft Customer Resource Management System 安全漏洞

Zhejiang University Entersoft Customer Resource Management System is a customer resource management system developed by the Zhejiang University team in China. A security vulnerability exists in the Zhejiang University Entersoft Customer Resource Management System due to an arbitrary file upload...

9.8CVSS7AI score0.00567EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/11 12:0 a.m.15 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

7.8AI score0.00567EPSS
Exploits0References3
CVE
CVE
added 2024/10/11 12:0 a.m.39 views

CVE-2024-46088

CVE-2024-46088 affects Zhejiang University Entersoft Customer Resource Management System (v2002–v2024) via the ProductAction.entphone interface. The vulnerability is an arbitrary file upload that allows remote code execution. Root cause: improper file upload handling. Impact: potential full compr...

9.8CVSS7.8AI score0.00567EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/11 12:0 a.m.4 views

PT-2024-31907 · Zhejiang University · Zhejiang University Entersoft Customer Resource Management System

Name of the Vulnerable Software and Affected Versions: Zhejiang University Entersoft Customer Resource Management System versions v2002 through v2024 Description: An arbitrary file upload vulnerability in the ProductAction.entphone interface allows attackers to execute arbitrary code via uploadin...

9.8CVSS8.2AI score0.00567EPSS
Exploits0References7
Rows per page
Query Builder