METIS WIC 安全漏洞

METIS WIC is a window interface configuration software for infrared thermometers developed by the Greek company METIS. METIS WIC has a security vulnerability. This vulnerability stems from the /dbviewer/ web endpoint, which can be accessed without authentication. This could allow remote attackers...

CVE-2025-64496 Open WebUI Affected by an External Model Server (Direct Connections) Code Injection via SSE Events

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Versions 0.6.224 and prior contain a code injection vulnerability in the Direct Connections feature that allows malicious external model servers to execute arbitrary JavaScript in victim browsers vi...

PT-2025-31995 · Dell · Dell Kace K1000 System Management Appliance

Name of the Vulnerable Software and Affected Versions: Dell KACE K1000 System Management Appliance versions 5.0 through 5.3 Dell KACE K1000 System Management Appliance versions 5.4 prior to 5.4.76849 Dell KACE K1000 System Management Appliance versions 5.5 prior to 5.5.90547 Description: An...

CVE-2024-44682

ShopXO 6.2 is vulnerable to Cross Site Scripting XSS in the backend that allows attackers to execute code by changing POST parameters...

CVE-2021-29271

remark42 before 1.6.1 allows XSS, as demonstrated by "Locator: LocatorURL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go...

cve

Vulnerability Title: Arbitrary File Read in QCMS Authenticate...

Tosei Online Store Management System 安全漏洞

Tosei Online Store Management System is an online store management system from Tosei Corporation. A security vulnerability exists in Tosei Online Store Management System versions 4.02, 4.03, and 4.04, where unknown code originating from the component Backend causes default credentials to be used...

CVE-2024-4851

A Server-Side Request Forgery SSRF vulnerability exists in the stangirard/quivr application, version 0.0.204, which allows attackers to access internal networks. The vulnerability is present in the crawl endpoint where the 'url' parameter can be manipulated to send HTTP requests to arbitrary URLs...

GHSA-XRVH-RVC4-5M43 Kirby vulnerable to unrestricted file upload of user avatar images

TL;DR This vulnerability affects all Kirby sites that might have potential attackers in the group of authenticated Panel users. The attack requires user interaction by another user or visitor and cannot be automated. ---- Introduction Unrestricted upload of files with a dangerous type is a type o...

CVE-2021-33561

A stored cross-site scripting XSS vulnerability in Shopizer before 2.17.0 allows remote attackers to inject arbitrary web script or HTML via customername in various forms of store administration. It is saved in the database. The code is executed for any user of store administration when informati...

Code Execution Vulnerability in SongCMS Backend

SongCMS is a PHP MySQL, ASP Access/SQL Server based development , enterprise-oriented , multi-language support , free , open source CMS, to help business users to quickly build and deploy enterprise-level portal . SongCMS backend code execution vulnerabilities , attackers use the vulnerability to...

Cmseasy website builder system has cross-site scripting vulnerability

cmseasy is a domestic commercial website builder system that is used for corporate website building. A vulnerability exists in the cmseasy backend code that does not properly filter dangerous characters, allowing attackers to exploit the vulnerability to conduct cross-site attacks...

YXcmsApp某处xss导致getshell

简要描述： xss到后台导致getshell一条龙服务不过略鸡肋。 详细说明： YXCMS是一款面向企业的内容管理系统，采用三级缓存，MVC架构以BSD协议开源。 注册了用户以后来到用户管理页面，点击信息发布 - 增加咨询，发现是一个富文本编辑器，kindeditor。不管是什么编辑器，既然给了一个用户这么大的权限，这种情况下很容易出现xss。 随便输入点什么东西，抓包，修改content字段内容，写你的xss代码，什么都行。 好了。管理员在后台就能看到我提交的文章： 然后编辑的话就能触发xss：...

Fedora 17 : boost-1.48.0-13.fc17 (2012-9818)

This update fixes a bug in Boost.Pool, which could under certain circumstances overflow allocated chunk size. This could have security implications for applications that use Boost pool without sanitizing pool parameters. - Boost.Locale library now contains backend code, which was left out before...

SHOP363 online shop system through the kill vulnerability-vulnerability warning-the black bar safety net

SHOP363 program is not for strict filtering, to produce cookies spoofing vulnerability. And can be configured to upload malicious code to obtain site permissions. In the discussion group to see the altar friends ask SHOP363 the background to get WEBSHELL method, because the previous didn't used t...