Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2025/05/22 6:33 a.m.10 views

CVE-2018-14440

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageActionqueryNotice.action noticeInfo parameter...

9.8CVSS8.1AI score0.01072EPSS
Exploits0References1
prion
prion
added 2018/07/20 12:29 a.m.16 views

Sql injection

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageActionqueryNotice.action noticeInfo parameter...

7.5CVSS9.8AI score0.01072EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2018/07/20 12:29 a.m.17 views

CVE-2018-14440

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageActionqueryNotice.action noticeInfo parameter...

9.8CVSS9.9AI score0.01072EPSS
Exploits0References1
nvd
nvd
added 2018/07/20 12:29 a.m.24 views

CVE-2018-14441

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadActionfileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type...

9.8CVSS9.4AI score0.01205EPSS
Exploits0References1
prion
prion
added 2018/07/20 12:29 a.m.14 views

Design/Logic Flaw

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadActionfileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type...

7.5CVSS9.3AI score0.01205EPSS
Exploits0References1Affected Software1
cve
cve
added 2018/07/20 12:0 a.m.43 views

CVE-2018-14440

CVE-2018-14440 describes an SQL injection in the fictional product “cckevincyh SSH CompanyWebsite” affecting versions up to 2018-05-03, reachable via the admin/noticeManageAction_queryNotice.action?noticeInfo parameter. The issue arises from unsanitized input on this parameter, enabling potential...

9.8CVSS9.8AI score0.01072EPSS
Exploits0References1Affected Software1
cve
cve
added 2018/07/20 12:0 a.m.36 views

CVE-2018-14441

CVE-2018-14441 describes an arbitrary file upload in the admin/fileUploadAction_fileUpload.action of cckevincyh SSH CompanyWebsite, affected through 2018-05-03. The issue allows uploading a .jsp file with an image/jpeg content type, enabling potential remote code execution via a uploaded JSP, as ...

9.8CVSS9.3AI score0.01205EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2018/07/20 12:0 a.m.20 views

CVE-2018-14441

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadActionfileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type...

9.5AI score0.01205EPSS
Exploits0References1
Rows per page
Query Builder