PT-2026-42185

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Beyaz Computer Software Design Industry and Trade Ltd. Co. CityPLus allows Reflected XSS. This issue affects CityPLus: before V24.29750.1.0...

CGA-C7FW-9QC5-6448

Bulletin has no description...

EUVD-2009-3024

Malware in sbrugna...

Malicious code in focus-sherlock (npm)

The package focus-sherlock was found to contain malicious code...

CVE-2024-10947 Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System BatchOrder sql injection

A vulnerability classified as critical was found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This vulnerability affects unknown code of the file /interlib/order/BatchOrder?cmdACT=adminorder&xsl=adminOrderOrderList.xsl. The...

CVE-2024-10947

CVE-2024-10947 affects Guangzhou Tuchuang Computer Software Development’s Interlib Library Cluster Automation Management System up to version 2.0.1. The vulnerability is an SQL injection in the BatchOrder endpoint (/interlib/order/BatchOrder?cmdACT=admin_order&xsl=adminOrder_OrderList.xsl) trigge...

CVE-2024-10946 Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System SysLib sql injection

A vulnerability classified as critical has been found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This affects an unknown part of the file...

Beijing Dawei Zhichuang Technology Co., Ltd.'s Intellectual Property Management System Has Logical Flaws and Vulnerabilities

Beijing Dawei Zhichuang Technology Co., Ltd. is a company whose business scope includes technology development, technology promotion, technology transfer, technology consulting and technology service in the field of computer software, hardware and electronic products. There is a logic flaw...

MAL-2022-6744 Malicious code in uglpti9f (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5708a7125d246cbcfa82d8f0b5ce76a91aab70187c166c079cc4a0560ec7e07d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SQL Injection Vulnerability in Qilai OA Cl***.aspx File

Xi'an Huatian Synergy Information Technology Co., Ltd. is a company whose business scope includes: sales of computer software and hardware, computer network engineering, design of security monitoring engineering, etc.. A SQL injection vulnerability exists in the Qilai OA Cl.aspx file, which can b...

SQL Injection Vulnerability in Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. Ltd (CNVD-2021-52066)

Ltd. is a high-tech enterprise integrating product research and development, application integration and customer service, with the main goal of providing high-quality application software system design, integration and maintenance services for users in the library industry. There is a SQL...

SQL Injection Vulnerability in interlib Library Cluster Management System

Guangzhou Tutron Computer Software Development Co., Ltd. is a high-tech enterprise integrating product development, application integration and customer service. A SQL injection vulnerability exists in the interlib library cluster management system, which can be exploited by attackers to obtain...

Shenzhen HeWeiShun Network Technology Co., Ltd. IP-COM in-depth Internet behavior management there are information leakage vulnerabilities

Shenzhen HeWeiShun Network Technology Co., Ltd. business scope includes network products, communication products, computer software and hardware, integrated circuit technology development, etc.. Shenzhen HeWeiShun Network Technology Co., Ltd. IP-COM in-depth Internet behavior management informati...

Arbitrary File Read Vulnerability in Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. Ltd (CNVD-2021-39129)

Guangzhou Tutron Computer Software Development Co., Ltd. is a high-tech enterprise integrating product development, application integration and customer service. There is an arbitrary file read vulnerability in the Library Cluster Management System of Guangzhou Tutron Computer Software Developmen...

File Upload Vulnerability in Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. Ltd (CNVD-2021-32386)

Guangzhou Tutron Computer Software Development Co., Ltd. is a high-tech enterprise integrating product development, application integration and customer service. A file upload vulnerability exists in the Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. An...

Shandong Guozi Software Co., Ltd. building system in the logic flaws vulnerability

Shandong Guozi Software Co., Ltd. is a company whose business scope includes the development, production, and sales of computer software and computer hardware; technical services and so on. Shandong Guozi Software Co., Ltd. building system in the logic flaws in the vulnerability, attackers can us...

SQL Injection Vulnerability in Gas Call Distribution System of Shenzhen Puyan Computer Software Technology Co.

Shenzhen Puyan Computer Software Technology Co., Ltd. gas call distribution system is a comprehensive service system based on CTI computer and telephone integration technology. There is a SQL injection vulnerability in the Gas Call Distribution System of Shenzhen Puyuan Computer Software Technolo...

DLL Hijacking Vulnerability in 115 PC Version of Guangdong One One Five Technology Co.

The business scope of Guangdong Yi Yi Wu Technology Co., Ltd. includes: design, development and sales of computer software and hardware; design, release, production and agency of domestic and foreign advertisements; and provision of computerized page production. Ltd. 115 computer version of the D...

File Upload Vulnerability in the Library Cluster Management System of Guangzhou Tutron Computer Software Development Co.

Ltd. is a high-tech enterprise integrating product research and development, application integration and customer service, with the main goal of providing high-quality application software system design, integration and maintenance services for users in the library industry. A file upload...

Baidu.com PC client suffers from dll hijacking vulnerability (CNVD-2020-73296)

Baidu.com formerly Baidu Cloud is a cloud storage service launched by Baidu, which has covered the mainstream PC and cell phone operating systems, including Web version, Windows version, Mac version, Android version, iPhone version and Windows Phone version. A dll hijacking vulnerability exists i...