83 matches found
CVE-2023-4059 Profile Builder < 3.9.8 - Unauthenticated Plugin's Pages Creation
The Profile Builder WordPress plugin before 3.9.8 lacks authorisation and CSRF in its page creation function which allows unauthenticated users to create the register, log-in and edit-profile pages from the plugin on the blog...
EI Tube YouTube API 3 SQL Injection
==================================================================================================================================== | Title : EI Tube YouTube API V3 site builder Sql Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firef...
Architect HTML And Site Builder 2.2.3 File Upload
==================================================================================================================================== | Title : Architect - HTML and Site Builder V 2.2.3 Remote File Upload vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser :...
Microsoft 3D Builder 安全漏洞
Microsoft 3D Builder, a tool for creating models and 3D printing from Microsoft USA, has a security vulnerability. No details of the vulnerability are currently available...
PT-2023-1051 · Microsoft · 3D Builder
Name of the Vulnerable Software and Affected Versions: 3D Builder affected versions not specified Description: The issue is related to insufficient input validation in the 3D Builder program, which can be exploited by opening a specially crafted malicious file, allowing an attacker to execute...
WordPress plugin Sygnoos Popup Builder 跨站请求伪造漏洞
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in WordPress Sygnoos Popup Builder 4.1.11 and prior versions, which arises from a web applicatio...
Kenhys Td Agent Builder Permission License and Access Control Issues Vulnerability
Kenhys Td Agent Builder is a Ruby-based software for collecting various types of log information by the individual developer Kenhys. Fluentd td-agent-builder plugin before 2020-12-18 A security vulnerability exists that could be exploited by an attacker to gain privileges because the bin director...
SQL Injection Vulnerability in Chongqing Billion Information Technology Co.
Ltd. referred to as: billion online, Chongqing billion is dedicated to brand website construction, Internet application development and network marketing, website construction is an important step in network marketing, according to the purpose of the enterprise's station, the overall positioning ...
Yunnan Huaji Youxiang Network Technology Co., Ltd. website building system has SQL injection vulnerability
Yunnan Huaji Youxiang Network Technology Co., Ltd. is to provide intellectual property rights and Internet services. There is a SQL injection vulnerability in the website building system of Yunnan Huayi Youxiang Network Technology Co. Attackers can utilize the vulnerability to obtain sensitive...
SQL Injection Vulnerability in Shijiazhuang Diyi Advertising Co.
Shijiazhuang Diyi Advertising Co., Ltd. is a company dedicated to corporate branding and marketing planning. Shijiazhuang Diyi Advertising Co., Ltd. website building system SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information database...
SQL Injection Vulnerability in Hanzhong Qiyuan Power Network Co.
Hanzhong Qiyuan Power Network Co., Ltd. is a high-tech Internet technology service provider. Hanzhong Qiyuan Power Network Co., Ltd. website building system has SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...
Wuhu ECCOM Information Technology Co., Ltd. website building system has SQL injection vulnerability
Wuhu eXpress Information Technology Co., Ltd. is an Internet application service solution provider. There is a SQL injection vulnerability in the website building system of Wuhu ECCOM Information Technology Co., Ltd, which can be exploited by attackers to obtain sensitive information from the...
Xi'an Baolian Network Technology Co., Ltd. website building system suffers from SQL injection vulnerabilities (CNVD-2020-32333)
Xi'an BaiLian Network Technology Co., Ltd. is the first technology company specializing in bearing industry management software development and bearing industry portal design. There is a SQL injection vulnerability in the website building system of Xi'an Bailian Network Technology Co. Attackers c...
SQL Injection Vulnerability in Enterprise First Website Building System
Business First is a website that offers free website building services for businesses. There is a SQL injection vulnerability in the Enterprise First website builder system, which can be exploited by attackers to obtain sensitive information from the database...
MayiCMS has a flawed logic vulnerability
MayiCMS is a php mysql based website builder. MayiCMS suffers from a logic flaw vulnerability that can be exploited by attackers to perform unauthorized operations...
S-CMS enterprise website builder system aj***.php page C_f*** parameter has SQL injection vulnerability
S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS enterprise website building system aj.php page Cf parameters exist SQL injection vulnerability, attackers can use the...
SQL Injection Vulnerability in the Website Building System of Beijing Beyond Infinity Information Technology Co. Ltd (CNVD-2019-30355)
Beijing Beyond Infinity Information Technology is a company engaged in website construction. A SQL injection vulnerability exists in the website building system of Beijing Beyond Unlimited Information Technology Co. Attackers can utilize the vulnerability to obtain sensitive information of the...
Yinchuan Xunlei Network Technology Co., Ltd. website building system has overstepped the right to access vulnerabilities
Yinchuan Xunlei Network Technology Co., Ltd. is one of the Internet application service providers in Ningxia. There is an access vulnerability in the website building system of Yinchuan Xunlei Network Technology Co. Attackers can take advantage of the vulnerability to access the background and...
The vulnerability of the Map Builder component of the Fusion Middleware data visualization software, MapViewer, allows a hacker to gain full control over the application.
The vulnerability of the Map Builder component of the Fusion Middleware data visualization software, MapViewer, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain full control over the application using the HTTP protoco...
SQL Injection Vulnerability in Hainan Creative Media pc Website Building System
Hainan Creative Future Culture Media Co., Ltd. is engaged in brand one-stop service e-commerce advertising consulting services media enterprises. We design complete solutions for users and provide the best advertising support services. A SQL injection vulnerability exists in the pc website builde...