Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-48605

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00721EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48606

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00616EPSS
Exploits0References3
NVD
NVD
added 2024/08/14 4:15 a.m.11 views

CVE-2024-7729

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers to download arbitrary CGI files...

7.5CVSS0.00616EPSS
Exploits0References3
NVD
NVD
added 2024/08/14 4:15 a.m.13 views

CVE-2024-7728

The specific CGI of the CAYIN Technology CMS does not properly validate user input, allowing a remote attacker with administrator privileges to inject OS commands into the specific parameter and execute them on the remote server...

7.2CVSS0.00721EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/14 3:52 a.m.22 views

CVE-2024-7729 CAYIN Technology CMS - Sensitive File Download

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers to download arbitrary CGI files...

7.5CVSS7.3AI score0.00616EPSS
Exploits0References3
CVE
CVE
added 2024/08/14 3:52 a.m.49 views

CVE-2024-7729

CVE-2024-7729 affects CAYIN Technology CMS, where a lack of proper access control allows unauthenticated remote attackers to download arbitrary CGI files. The entry has a CVSS v3.1 base score of 7.5 (HIGH) with network access, low attack complexity, and no privileges required. Public references (...

7.5CVSS7.7AI score0.00616EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/14 3:52 a.m.18 views

CVE-2024-7729 CAYIN Technology CMS - Sensitive File Download

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers to download arbitrary CGI files...

7.5CVSS0.00616EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/14 3:26 a.m.18 views

CVE-2024-7728 CAYIN Technology CMS - OS Command Injection

The specific CGI of the CAYIN Technology CMS does not properly validate user input, allowing a remote attacker with administrator privileges to inject OS commands into the specific parameter and execute them on the remote server...

7.2CVSS0.00721EPSS
Exploits0References3
CVE
CVE
added 2024/08/14 3:26 a.m.41 views

CVE-2024-7728

CVE-2024-7728 affects the CAYIN Technology CMS CGI, where improper input validation allows an administrator to inject OS commands into a specific parameter and execute them on the remote server. The vulnerability enables remote command execution with high impact (authentication required as an adm...

7.2CVSS7.2AI score0.00721EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/14 3:26 a.m.10 views

CVE-2024-7728 CAYIN Technology CMS - OS Command Injection

The specific CGI of the CAYIN Technology CMS does not properly validate user input, allowing a remote attacker with administrator privileges to inject OS commands into the specific parameter and execute them on the remote server...

7.2CVSS7.3AI score0.00721EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/08/14 12:0 a.m.4 views

PT-2024-38537 · Cayin Technology · Cayin Technology Cms

Name of the Vulnerable Software and Affected Versions: CAYIN Technology CMS affected versions not specified Description: The issue concerns the specific CGI of the CAYIN Technology CMS, which fails to properly validate user input. This allows a remote attacker with administrator privileges to...

7.2CVSS7.3AI score0.00721EPSS
Exploits0References8
CNVD
CNVD
added 2020/06/19 12:0 a.m.11 views

Code Execution Vulnerability in CAYIN Technology CMS

CAYIN Technology CMS is a content management system CMS from CAYIN Technology in Taiwan, China. A security vulnerability exists in the 'ntpIp' parameter of the systemservice.cgi file in CAYIN Technology CMS version 11.0 and earlier. A remote attacker could exploit the vulnerability to execute cod...

9.9CVSS7AI score0.33874EPSS
Exploits8References1
CNVD
CNVD
added 2020/06/19 12:0 a.m.16 views

CAYIN Technology xPost SQL Injection Vulnerability

CAYIN Technology xPost is a digital signage system for conference room management from CAYIN Technology in Taiwan, China. A SQL injection vulnerability exists in CAYIN Technology xPost 2.5 and prior versions. The vulnerability stems from a database-based application that lacks validation of...

10CVSS7.7AI score0.14014EPSS
Exploits5References1
Packet Storm
Packet Storm
added 2020/06/04 12:0 a.m.202 views

Cayin Signage Media Player 3.0 Root Remote Command Injection

!/usr/bin/env python3 Cayin Signage Media Player 3.0 Root Remote Command Injection Vendor: CAYIN Technology Co., Ltd. Product web page: https://www.cayintech.com Affected version: SMP-8000QD v3.0 SMP-8000 v3.0 SMP-6000 v3.0 Build 19025 SMP-6000 v1.0 Build 14246 SMP-6000 v1.0 Build 14199 SMP-6000...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2020/06/04 12:0 a.m.463 views

Cayin Content Management Server 11.0 Root Remote Command Injection

Cayin Content Management Server 11.0 Root Remote Command Injection Vendor: CAYIN Technology Co., Ltd. Product web page: https://www.cayintech.com Affected version: CMS-SE v11.0 Build 19179 CMS-SE v11.0 Build 19025 CMS-SE v11.0 Build 18325 CMS Station CMS-SE-LXC CMS-60 v11.0 Build 19025 CMS-40 v9....

7.4AI score
Exploits0
0day.today
0day.today
added 2020/06/04 12:0 a.m.60 views

Cayin Digital Signage System xPost 2.5 - Remote Command Injection Exploit

Exploit for multiple platform in category web applications Title: Cayin Digital Signage System xPost 2.5 - Remote Command Injection Author:LiquidWorm Vendor: https://www.cayintech.com CVE: N/A !/usr/bin/env python3 Cayin Digital Signage System xPost 2.5 Pre-Auth SQLi Remote Code Execution Vendor:...

0.2AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2020/06/04 12:0 a.m.83 views

Cayin Content Management Server 11.0 Root Remote Command Injection

Summary CAYIN Technology provides Digital Signage solutions, including media players, servers, and software designed for the DOOH Digital Out-of-home networks. We develop industrial-grade digital signage appliances and tailored services so you don't have to do the hard work. Description CAYIN CMS...

9.9CVSS7.6AI score0.33874EPSS
Exploits8
0day.today
0day.today
added 2020/06/04 12:0 a.m.84 views

Cayin Signage Media Player 3.0 - Remote Command Injection (root) Exploit

Exploit for multiple platform in category web applications Title: Cayin Signage Media Player 3.0 - Remote Command Injection root Author:LiquidWorm Vendor: https://www.cayintech.com CVE: N/A !/usr/bin/env python3 Cayin Signage Media Player 3.0 Root Remote Command Injection Vendor: CAYIN Technology...

7.1AI score
Exploits0
Rows per page
Query Builder