21 matches found
EUVD-2022-51636
Malicious code in bioql PyPI...
CVE-2022-4280
A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has be...
CVE-2022-4280
A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has be...
Information disclosure
A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has be...
CVE-2022-4280
CVE-2022-4280 affects Dot Tech Smart Campus System. Unknown functionality in /services/Card/findUser leads to information disclosure; attack may be launched remotely. Exploit has been disclosed publicly; VDB-214778 is the identifier. No explicit remediation details are provided in the sources.
CVE-2022-4280 Dot Tech Smart Campus System findUser information disclosure
A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has be...
CVE-2022-4280 Dot Tech Smart Campus System findUser information disclosure
A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has be...
Sichuan Ledu Software Co., Ltd. smart campus integrated management system has logic flaws and vulnerabilities
Sichuan Ledu Software Co., Ltd. is a company mainly engaged in computer hardware and software, instrumentation, network information technology development, technical consulting, technical services and other projects. There is a logic flaw vulnerability in the Smart Campus Integrated Management...
SQL Injection Vulnerability in Digital Campus Integrated Management System of Anhui Kexun Education Equipment Co.(CNVD-2020-33072)
Digital campus is based on digital information and network, established on computer and network technology for the collection, processing, integration, storage, transmission and application of campus information on teaching, scientific research, management, technical services, life services, etc....
SQL Injection Vulnerability in Digital Campus Integrated Management System of Anhui Kexun Education Equipment Co.
Digital campus is based on digital information and network, established on computer and network technology for the collection, processing, integration, storage, transmission and application of campus information on teaching, scientific research, management, technical services, life services, etc....
SQL Injection Vulnerability in ZYDM Parameters of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. NET+SqlServer technology platform. Shanghai Pengda Computer System Development Co., Ltd. digital campus management...
SQL Injection Vulnerability in QuestionId Parameter of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. NET+SqlServer technology platform. A SQL injection vulnerability exists in the Digital Campus Management System/BG/GRBG/QuestionManage/GenerQuestionnaire.aspx page of...
SQL Injection Vulnerability in FileID Parameter of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. NET+SqlServer technology platform. SQL injection vulnerability exists in the Digital Campus Management System/BG/Mail/Mail/DownAttach.aspx page of Shanghai Pengda...
SQL Injection Vulnerability in id Parameter of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. SQL injection vulnerability exists in the /BG/ToDo/ToDoDetail.aspx and /BG/Txl/TxlDetail.aspx pages of the Digital Campus Management System of Shanghai Pengda Computer...
SQL Injection Vulnerability in Type Parameters of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. NET+SqlServer technology platform. A SQL injection vulnerability exists in the Digital Campus Management System/Student/xsxk/MessageView.aspx page of Shanghai Pengda...
The new coordinates of the digital campus system AreaTeacherInfo. aspx SQL injection vulnerability
No description provided by source...
LZXSZXYXT乐知行数字校园系统在showInfoEdit.do的参数Type存在SQL注入漏洞
No description provided by source...
Digital Campus System Arbitrary File Upload Vulnerability at Shanghai Dingchuang Information Technology Co.
Ltd. is based on China's education informatization business, is committed to the development of research and development of convenient and easy to use campus management software. The vulnerability in the upload of arbitrary files in the Digital Campus System of Shanghai Dingtron Information...
某通用型校园系统多处系统越权
简要描述: 见详情 详细说明: 漏洞证明: 看乌云别人提交,看了下: 关键字:SM2005/ 多处越权: 第一处:无需登陆可查看任意教师,任意学期的班级课表 漏洞位置:SM2005/student/StuKB/TeaKB.asp?sYanzheng=suyaxingweb 案例如下: http://www.sdwhys.com/SM2005/student/StuKB/TeaKB.asp?sYanzheng=suyaxingweb http://www.zjnksyzx.com:8801/SM2005/student/StuKB/TeaKB.asp?sYanzheng=suyaxingw...
某校园系统一处遗漏通用SQL注入漏洞
简要描述: 校园系统通用SQL注入 详细说明: 漏洞细节: 见乌云,URL: WooYun: 某通用型校园校务系统SQL注入 属于遗漏一处: 漏洞位置在学生成绩查询处的输入处 位置:SM2005/student/StuCJ/StuScoreQuery.asp?sYanzheng=suyaxingweb 注入参数:StartKSID 借用前人案例:...