2 matches found
XML Entity Injection Vulnerability in UFIDA U8+ CRM Customer Relationship Management Software
formerly known as Shanghai Qitong Software Co., Ltd., is a management digital service company that integrates the development, consulting, marketing, training, implementation and service of management software and Internet applications. An XML entity injection vulnerability exists in UFIDA U8+ CR...
Command Execution Vulnerability in Bacardi CMS Microstore (CNVD-2021-12800)
Bacardi CMS MicroMall is a free and open source object-oriented multi-store multi-user micro-mall PHP development framework. Bacardi CMS Microstore has a command execution vulnerability. Attackers can use this vulnerability to obtain control of the server...