211 matches found
CVE-2024-13061
The Electronic Official Document Management System from 2100 Technology has an Authentication Bypass vulnerability. Although the product enforces an IP whitelist for the API used to query user tokens, unauthenticated remote attackers can still deceive the server to obtain tokens of arbitrary user...
2100 TECHNOLOGY Electronic Official Document Management System 安全漏洞
2100 TECHNOLOGY Electronic Official Document Management System is an electronic office document management system from 2100 TECHNOLOGY. A security vulnerability exists in 2100 TECHNOLOGY Electronic Official Document Management System versions prior to 5.0.86.9, which stems from an authentication...
Teedy 安全漏洞
Teedy is an open source, lightweight document management system for individuals and businesses from Teedy Open Source in France. A security vulnerability exists in Teedy version 1.11, which stems from vulnerability to cross-site scripting XSS attacks via the administration console...
Document Management System SQL Injection Vulnerability
Document Management System is a document management system. A SQL injection vulnerability exists in Document Management System version 1.0 due to a lack of validation of externally entered SQL statements in parameter anothercont. An attacker can exploit this vulnerability to execute illegal SQL...
CVE-2024-6803
A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...
CVE-2024-6803
A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...
CVE-2024-6803 itsourcecode Document Management System insert.php sql injection
A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file insert.php. The manipulation of the argument anothercont leads to sql injection. The attack can be launched remotely. Th...
CVE-2024-6803
CVE-2024-6803 affects itsourcecode Document Management System 1.0; vulnerable component is insert.php, where the parameter anothercont enables SQL injection. The issue is exploitable remotely and has publicly disclosed exploits. CVSS metrics indicate high/critical impact across confidentiality, i...
Document Management System SQL注入漏洞
Document Management System is a document management system. A SQL injection vulnerability exists in Document Management System version 1.0 due to a lack of validation of externally entered SQL statements in parameter anothercont. An attacker can exploit this vulnerability to execute illegal SQL...
PT-2024-37874
Name of the Vulnerable Software and Affected Versions itsourcecode Document Management System version 1.0 Description A critical issue has been found in the itsourcecode Document Management System, affecting an unknown functionality of the file insert.php. The manipulation of the anothercont...
CVE-2024-6737
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
CVE-2024-6737
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
2100 TECHNOLOGY Electronic Official Document Management System Access Control Error Vulnerability
2100 TECHNOLOGY Electronic Official Document Management System is an electronic office document management system from 2100 TECHNOLOGY, China. An Access Control Error vulnerability exists in 2100 TECHNOLOGY Electronic Official Document Management System versions prior to 5.0.77. The vulnerability...
CVE-2024-6014
A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...
CVE-2024-6014
The CVE-2024-6014 entry concerns itsourcecode Document Management System 1.0. Affects an unknown function in edithis.php where manipulating the id parameter triggers SQL injection, enabling remote exploitation. Multiple connected sources confirm SQLi in edithis.php with remote access and public e...
CVE-2024-6014 itsourcecode Document Management System edithis.php sql injection
A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...
CVE-2024-6014 itsourcecode Document Management System edithis.php sql injection
A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t...
PT-2024-37317 · Unknown · Itsourcecode Document Management System
Name of the Vulnerable Software and Affected Versions: itsourcecode Document Management System version 1.0 Description: A critical issue has been found in the itsourcecode Document Management System. The problem is related to an unknown function in the file edithis.php, where the manipulation of...