13 matches found
EUVD-2020-29826
Malware in sbrugna...
CVE-2025-34160
AnyShare contains a critical unauthenticated remote code execution vulnerability in the ServiceAgent API exposed on port 10250. The endpoint /api/ServiceAgent/startservice accepts user-supplied input via POST and fails to sanitize command-like payloads. An attacker can inject shell syntax that is...
CVE-2025-34160
AnyShare contains a critical unauthenticated remote code execution vulnerability in the ServiceAgent API exposed on port 10250. The endpoint /api/ServiceAgent/startservice accepts user-supplied input via POST and fails to sanitize command-like payloads. An attacker can inject shell syntax that is...
CVE-2025-34160 AnyShare ServiceAgent API Unauthenticated RCE
AnyShare contains a critical unauthenticated remote code execution vulnerability in the ServiceAgent API exposed on port 10250. The endpoint /api/ServiceAgent/startservice accepts user-supplied input via POST and fails to sanitize command-like payloads. An attacker can inject shell syntax that is...
CVE-2025-34160
AnyShare contains a critical unauthenticated remote code execution vulnerability in the ServiceAgent API exposed on port 10250. The endpoint /api/ServiceAgent/startservice accepts user-supplied input via POST and fails to sanitize command-like payloads. An attacker can inject shell syntax that is...
AiShu AnyShare 安全漏洞
AiShu AnyShare is an enterprise content management platform from China-based AiShu. AiShu AnyShare has a security vulnerability that originates from an unauthenticated and uncleaned input to the ServiceAgent API, which could lead to remote code execution...
CVE-2020-8996
AnyShare Cloud 6.0.9 allows authenticated directory traversal to read files, as demonstrated by the interface/downloadwithpath/downloadfile/?filepath=/etc/passwd URI...
CVE-2020-8996
AnyShare Cloud 6.0.9 allows authenticated directory traversal to read files, as demonstrated by the interface/downloadwithpath/downloadfile/?filepath=/etc/passwd URI...
CVE-2020-8996
AnyShare Cloud 6.0.9 allows authenticated directory traversal to read files, as demonstrated by the interface/downloadwithpath/downloadfile/?filepath=/etc/passwd URI...
Directory traversal
AnyShare Cloud 6.0.9 allows authenticated directory traversal to read files, as demonstrated by the interface/downloadwithpath/downloadfile/?filepath=/etc/passwd URI...
CVE-2020-8996
AnyShare Cloud 6.0.9 allows authenticated directory traversal to read files, as demonstrated by the interface/downloadwithpath/downloadfile/?filepath=/etc/passwd URI...
CVE-2020-8996
CVE-2020-8996 affects AnyShare Cloud 6.0.9. The connected records confirm an authenticated directory traversal in the file download path, evidenced by the URI pattern interface/downloadwithpath/downloadfile/?filepath=/etc/passwd, allowing reading of server files. The root cause is a directory tra...
AnyShare Cloud Path Traversal Vulnerability
AnyShare is an integrated hardware and software product developed by Shanghai Aiqi Software Co., Ltd. and is mainly aimed at enterprise-level users, providing unstructured data management solutions. A path traversal vulnerability exists in AnyShare Cloud version 6.0.9. An attacker can exploit thi...