Lucene search
K

20 matches found

GithubExploit
GithubExploit
added 2024/06/15 4:44 p.m.1192 views

Exploit for SQL Injection in Crmeb

CVE-2024-36837 / CNVD-2024-30128 POC write URL in url.txt and...

7.5CVSS7.8AI score0.08306EPSS
Exploits2
CNNVD
CNNVD
added 2024/05/06 12:0 a.m.4 views

crmeb 安全漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in crmebjava v1.3.4, which was discovered via the mergeList method of the com.zbkj.front.pub.ImageMergeController class to contain a server-side reques...

5.3CVSS6.9AI score0.00468EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/28 12:0 a.m.3 views

Zhongbang CRMEB 安全漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB Java e-commerce system version v.1.3.4. An attacker can exploit this vulnerability to execute arbitrary code via the groupid parameter...

8.1CVSS7.7AI score0.00842EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.4 views

crmeb_java 安全漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in versions prior to crmebjava v1.3.4, which stems from the presence of a SQL injection vulnerability that allows an attacker to run arbitrary SQL...

6.5CVSS7.9AI score0.00613EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/02/23 12:0 a.m.6 views

CRMEB Security Vulnerabilities

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB crmebjava v.1.3.4 and earlier versions. A remote attacker can exploit this vulnerability to obtain sensitive information via the latitude and...

7.5CVSS6.5AI score0.00786EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/06/14 12:0 a.m.3 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A code issue vulnerability exists in Zhongbang CRMEB versions prior to 4.6.0. An attacker could exploit this vulnerability to conduct server-side request forgery attacks...

8.8CVSS7AI score0.0082EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/06/14 12:0 a.m.5 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A code issue vulnerability exists in Zhongbang CRMEB versions prior to 4.6.0. An attacker could exploit this vulnerability to cause data deserialization...

9.8CVSS7.1AI score0.012EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/06/14 12:0 a.m.4 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A code issue vulnerability exists in Zhongbang CRMEB versions prior to 4.6.0. An attacker could exploit this vulnerability to cause data deserialization...

9.8CVSS5.9AI score0.01165EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/05/08 12:0 a.m.6 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Xi'an Zhongbang Networks Zhongbang Company in China. CRMEB v4.4 to v4.6 there is a security vulnerability , the vulnerability stems from the component attachmentSystemAttachmentServices.php found to contain arbitrary file upload...

9.8CVSS8.4AI score0.01349EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/04/29 12:0 a.m.4 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A code issue vulnerability exists in Zhongbang CRMEB version 4.6.0, which stems from an incorrect operation of the parameter filename resulting in unrestricted file uploads...

7.2CVSS5.5AI score0.00824EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/03/23 12:0 a.m.5 views

Zhongbang CRMEB 跨站脚本漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB Java version 1.3.4, which originates from a security issue in the function save in the file /api/admin/store/product/save, resulting in...

5.4CVSS4.3AI score0.00517EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/03/07 12:0 a.m.3 views

Zhongbang CRMEB SQL注入漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB version 1.3.4 and earlier versions, which originated from an SQL injection attack via /api/admin/user/list...

7.2CVSS7.2AI score0.00755EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/03/03 12:0 a.m.3 views

Zhongbang CRMEB SQL注入漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. Zhong Bang CRMEB Java version 1.3.4 suffers from a SQL injection vulnerability, which stems from the operation of the parameter keywords can lead to sql injection...

7.2CVSS6.3AI score0.00763EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/02/06 12:0 a.m.5 views

Zhongbang CRMEB 安全漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Xi'an, China. A security vulnerability exists in CRMEB version 4.4.4, which is caused by an arbitrary file download...

7.5CVSS7.5AI score0.00644EPSS
Exploits0References3
CNVD
CNVD
added 2021/07/01 12:0 a.m.25 views

Zhongbang CRMEB SQL Injection Vulnerability

Zhongbang CRMEB is an open source e-commerce management system of China Xi'an Zhongbang Network Zhongbang Company. Zhongbang CRMEB Mall System There is a SQL injection vulnerability in Zhongbang CRMEB Mall System V2.60 and V3.1 via the SQL injection vulnerability in the tablename parameter in...

8.8CVSS3.3AI score0.01163EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/06/29 12:0 a.m.1 views

Zhongbang CRMEB SQL注入漏洞

Zhongbang CRMEB is an open source e-commerce management system of China Xi'an Zhongbang Network Zhongbang Company. Zhongbang CRMEB Mall System There is a SQL injection vulnerability in Zhongbang CRMEB Mall System V2.60 and V3.1 via the SQL injection vulnerability in the tablename parameter in...

8.8CVSS6.1AI score0.01163EPSS
Exploits1References2
CNVD
CNVD
added 2021/06/25 12:0 a.m.6 views

crmeb server-side request forgery vulnerability

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB 3.1.0+, which stems from the strict domain name filtering in CRMEB 3.1.0+ leading to SSRF Server Side Request Forgery. No detailed vulnerabili...

4.3CVSS6.8AI score0.00666EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/06/24 12:0 a.m.5 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB 3.1.0+, which causes a file upload vulnerability via the CRMEB service upload service...

10CVSS8.3AI score0.01846EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/06/24 12:0 a.m.3 views

Zhongbang CRMEB 代码问题漏洞

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB 3.1.0+, which stems from the strict domain name filtering in CRMEB 3.1.0+ leading to SSRF Server Side Request Forgery. No detailed vulnerabili...

4.3CVSS5.6AI score0.00666EPSS
Exploits1References1
CNVD
CNVD
added 2020/10/26 12:0 a.m.1 views

Zhongbang CRMEB server-side request forgery vulnerability

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. CRMEB version 3.0 has a server-side request forgery vulnerability , the vulnerability stems from the downloadimage interface SSRF vulnerability , you can remotely download any file on...

9.8CVSS7.8AI score0.03033EPSS
Exploits1References1
Rows per page
Query Builder