Lucene search
+L

211 matches found

NVD
NVD
added 2024/12/31 12:15 p.m.19 views

CVE-2024-13061

The Electronic Official Document Management System from 2100 Technology has an Authentication Bypass vulnerability. Although the product enforces an IP whitelist for the API used to query user tokens, unauthenticated remote attackers can still deceive the server to obtain tokens of arbitrary user...

9.8CVSS0.01259EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/12/31 12:0 a.m.6 views

2100 TECHNOLOGY Electronic Official Document Management System 安全漏洞

2100 TECHNOLOGY Electronic Official Document Management System is an electronic office document management system from 2100 TECHNOLOGY. A security vulnerability exists in 2100 TECHNOLOGY Electronic Official Document Management System versions prior to 5.0.86.9, which stems from an authentication...

9.8CVSS7.1AI score0.01259EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/07 12:0 a.m.4 views

Teedy 安全漏洞

Teedy is an open source, lightweight document management system for individuals and businesses from Teedy Open Source in France. A security vulnerability exists in Teedy version 1.11, which stems from vulnerability to cross-site scripting XSS attacks via the administration console...

8.4CVSS5.7AI score0.02611EPSS
Exploits3References4
CNVD
CNVD
added 2024/07/19 12:0 a.m.8 views

Document Management System SQL Injection Vulnerability

Document Management System is a document management system. A SQL injection vulnerability exists in Document Management System version 1.0 due to a lack of validation of externally entered SQL statements in parameter anothercont. An attacker can exploit this vulnerability to execute illegal SQL...

9.8CVSS7.9AI score0.00521EPSS
Exploits1References1
OSV
OSV
added 2024/07/17 3:15 a.m.5 views

CVE-2024-6803

A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...

9.8CVSS5.7AI score0.00521EPSS
Exploits1References4
NVD
NVD
added 2024/07/17 3:15 a.m.26 views

CVE-2024-6803

A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...

9.8CVSS0.00521EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/07/17 2:31 a.m.32 views

CVE-2024-6803 itsourcecode Document Management System insert.php sql injection

A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...

6.5CVSS0.00521EPSS
Exploits1References4
CVE
CVE
added 2024/07/17 2:31 a.m.51 views

CVE-2024-6803

CVE-2024-6803 affects itsourcecode Document Management System 1.0; vulnerable component is insert.php, where the parameter anothercont enables SQL injection. The issue is exploitable remotely and has publicly disclosed exploits. CVSS metrics indicate high/critical impact across confidentiality, i...

9.8CVSS6.3AI score0.00521EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/07/17 12:0 a.m.5 views

Document Management System SQL注入漏洞

Document Management System is a document management system. A SQL injection vulnerability exists in Document Management System version 1.0 due to a lack of validation of externally entered SQL statements in parameter anothercont. An attacker can exploit this vulnerability to execute illegal SQL...

9.8CVSS8.2AI score0.00521EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/07/17 12:0 a.m.7 views

PT-2024-37874

Name of the Vulnerable Software and Affected Versions itsourcecode Document Management System version 1.0 Description A critical issue has been found in the itsourcecode Document Management System, affecting an unknown functionality of the file insert.php. The manipulation of the anothercont...

9.8CVSS5.8AI score0.00521EPSS
Exploits1References10
OSV
OSV
added 2024/07/15 3:15 a.m.3 views

CVE-2024-6737

The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...

8.8CVSS5.8AI score0.00616EPSS
Exploits0References2
NVD
NVD
added 2024/07/15 3:15 a.m.20 views

CVE-2024-6737

The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...

8.8CVSS0.00616EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/15 2:23 a.m.11 views

CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control

The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...

8.8CVSS7AI score0.00616EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/15 2:23 a.m.26 views

CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control

The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...

8.8CVSS0.00616EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/07/15 12:0 a.m.4 views

2100 TECHNOLOGY Electronic Official Document Management System Access Control Error Vulnerability

2100 TECHNOLOGY Electronic Official Document Management System is an electronic office document management system from 2100 TECHNOLOGY, China. An Access Control Error vulnerability exists in 2100 TECHNOLOGY Electronic Official Document Management System versions prior to 5.0.77. The vulnerability...

8.8CVSS6.7AI score0.00616EPSS
Exploits0References3
OSV
OSV
added 2024/06/15 5:15 p.m.5 views

CVE-2024-6014

A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...

9.8CVSS5.8AI score0.00504EPSS
Exploits1References4
CVE
CVE
added 2024/06/15 4:31 p.m.54 views

CVE-2024-6014

The CVE-2024-6014 entry concerns itsourcecode Document Management System 1.0. Affects an unknown function in edithis.php where manipulating the id parameter triggers SQL injection, enabling remote exploitation. Multiple connected sources confirm SQLi in edithis.php with remote access and public e...

9.8CVSS7.1AI score0.00504EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/06/15 4:31 p.m.31 views

CVE-2024-6014 itsourcecode Document Management System edithis.php sql injection

A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...

6.5CVSS0.00504EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/06/15 4:31 p.m.16 views

CVE-2024-6014 itsourcecode Document Management System edithis.php sql injection

A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...

6.5CVSS7.7AI score0.00504EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/06/15 12:0 a.m.7 views

PT-2024-37317 · Unknown · Itsourcecode Document Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Document Management System version 1.0 Description: A critical issue has been found in the itsourcecode Document Management System. The problem is related to an unknown function in the file edithis.php, where the manipulation of...

9.8CVSS8.1AI score0.00504EPSS
Exploits1References6
Rows per page
Query Builder