93 matches found
Beijing Baichuo Smart S210 Management Platform 安全漏洞
Beijing Baichuo Smart S210 Management Platform is a multi-service security gateway intelligent management platform from Beijing Baichuo, China. A security vulnerability exists in the Beijing Baichuo Smart S210 Management Platform that could allow an attacker to obtain sensitive information via th...
Beijing Baichuo Smart S42 Security Breach
Beijing Baichuo Smart S42 is an Internet Behavior Management appliance from Beijing Baichuo, China. A security vulnerability exists in Beijing Baichuo Smart S42 v.S42, which originates from a file upload vulnerability. The vulnerability can be exploited to execute arbitrary code via the...
Out-of-bounds
A vulnerability has been found in Beijing Baichuo Smart S42 Management Platform up to 20240219 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument hidwel leads to unrestricted upload. Th...
CVE-2024-1918
CVE-2024-1918 affects Byzoro Smart S42 Management Platform (versions up to 20240219). The vulnerability concerns an unknown functionality in /useratte/userattestation.php where manipulation of the hidwel parameter enables unrestricted file uploads. The issue is exploitable remotely and has been d...
Beijing Baichuo Smart S42 Management Platform Code Issue Vulnerability
Beijing Baichuo Smart S42 is an Internet Behavior Management appliance from Beijing Baichuo, China. A code issue exists in Beijing Baichuo Smart S42 Management Platform 20240219 and prior versions, which originates from an unknown function in /useratte/userattestation.php that causes unrestricted...
Sql injection
A vulnerability, which was classified as critical, was found in Beijing Baichuo Smart S20 Management Platform up to 20231120. This affects an unknown part of the file /sysmanage/sysmanageajax.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...
CVE-2024-1254
Summary: CVE-2024-1254 affects Beijing Baichuo / Byzoro Smart S20 Management Platform up to 20231120. The vulnerability is in the file /sysmanage/sysmanageajax.php, where manipulation of the id parameter yields an SQL injection. Exploitation is possible remotely, and public exploits have been dis...
Out-of-bounds
A vulnerability, which was classified as critical, has been found in Beijing Baichuo Smart S40 Management Platform up to 20240126. Affected by this issue is some unknown functionality of the file /useratte/web.php of the component Import Handler. The manipulation of the argument fileupload leads ...
CVE-2024-1253
CVE-2024-1253 affects Beijing Baichuo/Byzoro Smart S40 Management Platform up to 20240126. The issue is in the Import Handler’s file_upload handling for /useratte/web.php, where improper handling can cause unrestricted file upload. This enables remote exploitation with high impact to confidential...
Beijing Baichuo Smart S20 SQL Injection Vulnerability
The Beijing Baichuo Smart S20 is an Internet Behavior Management appliance from Beijing Baichuo, China. A SQL injection vulnerability exists in Beijing Baichuo Smart S20 Management Platform version 20231120 and prior versions, which stems from an incorrect operation of the parameter id that can...
Out-of-bounds
A vulnerability has been found in Beijing Baichuo Smart S210 Management Platform up to 20240117 and classified as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php. The manipulation of the argument fileupload leads to unrestricted upload. The attack can be initiat...
CVE-2024-0939
The CVE-2024-0939 entry concerns Byzoro Beijing Baichuo Smart S210 Management Platform (versions up to 20240117). The vulnerability lies in /Tool/uploadfile.php where manipulating the file_upload parameter allows unrestricted file uploads, enabling remote code execution and potentially compromisi...
PT-2024-15924 · Beijing Baichuo · Beijing Baichuo Smart S210 Management Platform
Name of the Vulnerable Software and Affected Versions: Beijing Baichuo Smart S210 Management Platform versions up to 20240117 Description: A critical vulnerability has been found in the Beijing Baichuo Smart S210 Management Platform. The issue affects the file /Tool/uploadfile.php, where the...
Information disclosure
A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management Platform V31R02B15. This affects an unknown part of the file /log/download.php of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the...
CVE-2024-0716
CVE-2024-0716 affects Byzoro Smart S150 Management Platform v31R02B15, specifically the Backup File Handler component’s /log/download.php, where manipulation leads to information disclosure. The connected PT-2024-15776 entry provides concrete details: remote initiation is possible, attack complex...
Improper access control
A vulnerability was found in Beijing Baichuo Smart S150 Management Platform V31R02B15. It has been classified as critical. Affected is an unknown function of the file /useratte/inc/userattea.php. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The...
CVE-2024-0712
The CVE-2024-0712 entry concerns Byzoro/Beijing Baichuo Smart S150 Management Platform (V31R02B15). Affected is an unknown function in the file /useratte/inc/userattea.php, leading to improper access controls. The vulnerability is exploitable remotely, and public exploits have been disclosed. Mul...
Beijing Baichuo Smart S150 Information Disclosure Vulnerability
Beijing Baichuo Smart S150 is an Internet Behavior Management appliance from Beijing Baichuo, China. An information disclosure vulnerability exists in Beijing Baichuo Smart S150 Management Platform version V31R02B15, which originates from the file /log/download.php and can lead to information...
Beijing Baichuo Smart S150 Access Control Error Vulnerability
Beijing Baichuo Smart S150 is an Internet Behavior Management appliance from Beijing Baichuo, China. An access control error vulnerability exists in Beijing Baichuo Smart S150 Management Platform version V31R02B15, which originates from the file /useratte/inc/userattea.php that can lead to...
Out-of-bounds
A vulnerability was found in Beijing Baichuo Smart S150 Management Platform up to 20240101. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php of the component HTTP POST Request Handler. The manipulation of the argument...