21 matches found
EUVD-2025-74039
An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the...
EUVD-2023-58356
Malicious code in bioql PyPI...
CVE-2023-6100
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent.; The manipulation leads to unrestricted upload. It is possible...
Information Leakage Vulnerability in Equipment Asset Comprehensive Control Platform of Guangdong Zhongshi Intelligent Control Technology Co.
Guangdong Zhongshi Intelligent Control Technology Co., Ltd. is a specialized enterprise in the field of high-tech, with industrial Internet and smart city digital technology innovation application as its core business. There is an information leakage vulnerability in the equipment asset integrate...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
Design/Logic Flaw
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
CVE-2023-6102
CVE-2023-6102 affects Maiwei Safety Production Control Platform 4.1. The issue is an unrestricted file upload in the function handling /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent, allowing remote exploitation. Exploit has been disclosed publicly; vendor response no...
CVE-2023-6102 Maiwei Safety Production Control Platform unrestricted upload
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
CVE-2023-6101
A vulnerability, which was classified as problematic, has been found in Maiwei Safety Production Control Platform 4.1. This issue affects some unknown processing of the file /TC/V2.7/ha.html of the component Intelligent Monitoring. The manipulation leads to information disclosure. The attack may ...
CVE-2023-6101 Maiwei Safety Production Control Platform Intelligent Monitoring ha.html information disclosure
A vulnerability, which was classified as problematic, has been found in Maiwei Safety Production Control Platform 4.1. This issue affects some unknown processing of the file /TC/V2.7/ha.html of the component Intelligent Monitoring. The manipulation leads to information disclosure. The attack may ...
CVE-2023-6101
CVE-2023-6101 affects Maiwei Safety Production Control Platform 4.1, specifically the Intelligent Monitoring component and the processing of the file /TC/V2.7/ha.html. Descriptions across sources indicate a remotely initiable issue that leads to information disclosure. The vulnerability is public...
CVE-2023-6100
Maiwei Safety Production Control Platform 4.1 is affected via the /api/DataDictionary/GetItemList API, where manipulation can disclose information. The issue is reported as remote-exploitable with publicly disclosed exploit details. Several connected sources confirm the exact endpoint and impact,...
CVE-2023-6100 Maiwei Safety Production Control Platform GetItemList information disclosure
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
PT-2023-32514 · Unknown · Maiwei Safety Production Control Platform
Name of the Vulnerable Software and Affected Versions: Maiwei Safety Production Control Platform version 4.1 Description: A problematic issue was found in the Maiwei Safety Production Control Platform, affecting the /api/DataDictionary/GetItemList API endpoint. This issue leads to information...
Command Execution Vulnerability in 4A Unified Security Control Platform of Beijing Qixingchen Information Security Technology Co.
Beijing Qixingchen Information Security Technology Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A command execution vulnerability exists in the 4A Unified Security Control Platform of Beijing Qixingchen Information Security...
SQL Injection Vulnerability in Pollutant Discharge Intelligent Control Platform of Hebei Baijing Environmental Technology Co.
Hebei Baijing Environmental Technology Co., Ltd. is located in Shijiazhuang High-tech Development Zone, is the ecological environment quality monitoring and control of series of products research and development, data services, integrated solution design of specialized high-tech enterprises. Hebe...
Command Execution Vulnerability in Panalog Log Audit System of Beijing Paiwang Software Co.
Panabit log auditing system supports clustering and open Raw Data interface to Hadoop big data platform. And embedded in the cloud control platform, convenient for users to unify and centralized monitoring and so on. Panabit Log Audit System has a command execution vulnerability that can be...
SQL Injection Vulnerability in Dual-Control Platform for Safety Production of Beijing Baixinan Technology Co.
Beijing Baixinan Technology Co., Ltd. is a high-tech enterprise dedicated to the construction of informationization, intelligentization and emergency management platform. There is a SQL injection vulnerability in the dual-control platform of Beijing Baixin Security Technology Co., Ltd. that can b...
Logical flaws exist in the dual-control platform for production safety of Beijing Baixinan Technology Co.
Beijing Baixinan Technology Co., Ltd. is a high-tech enterprise dedicated to the construction of informationization, intelligentization and emergency management platform. A logic flaw exists in the dual-control platform of Beijing Baixin Security Technology Co., Ltd. that can be exploited by an...