211 matches found
CVE-2026-3068
A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...
EUVD-2026-7394
A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and ma...
CVE-2026-3069 itsourcecode Document Management System edtlbls.php sql injection
A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and ma...
CVE-2026-3069
A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and ma...
CVE-2026-3068 itsourcecode Document Management System deluser.php sql injection
A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...
EUVD-2026-7395
A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...
CVE-2026-3068
A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...
PT-2026-21662
Name of the Vulnerable Software and Affected Versions itsourcecode Document Management System version 1.0 Description A security issue exists in itsourcecode Document Management System version 1.0. The manipulation of the field1 parameter in the /edtlbls.php file can lead to SQL injection. The...
PT-2026-21661
Name of the Vulnerable Software and Affected Versions itsourcecode Document Management System version 1.0 Description A flaw exists in itsourcecode Document Management System 1.0. The issue is related to a SQL injection that can be triggered by manipulating the user2del argument in the /deluser.p...
itsourcecode Document Management System SQL注入漏洞
itsourcecode Document Management System is an open-source document management system developed by itsourcecode. Version 1.0 of the itsourcecode Document Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter field1 in the file...
PT-2026-21810
Name of the Vulnerable Software and Affected Versions itsourcecode Document Management System version 1.0 Description A SQL injection issue exists due to the improper handling of the Username argument within the /loging.php component of the Login functionality. This allows for remote exploitation...
CVE-2026-0505 Multiple vulnerabilities in BSP Applications of SAP Document Management System
The BSP applications allow an unauthenticated user to manipulate user-controlled URL parameters that are not sufficiently validated. This could result in unvalidated redirection to attacker-controlled websites, leading to a low impact on confidentiality and integrity, and no impact on the...
Flowring Docpedia SQL注入漏洞
Flowring Docpedia is a document management system developed by Flowring Corporation. Flowring Docpedia has a SQL injection vulnerability. This vulnerability allows authenticated remote attackers to inject arbitrary SQL commands, potentially leading to the reading, modification, or deletion of...
SAP Document Management System 输入验证错误漏洞
SAP Document Management System is a document management system developed by the German company SAP. The SAP Document Management System has a vulnerability related to input validation errors. This vulnerability stems from insufficient cleanup of user-controlled URL parameters, which may lead to...
2100 Technology Official Document Management System Security Vulnerabilities
The 2100 Technology Official Document Management System is a document management software developed by 2100 Technology in Taiwan, China. The 2100 Technology Official Document Management System has a security vulnerability, which stems from improper authorization. This vulnerability could allow...
CBK Soft EnVision 安全漏洞
CBK Soft EnVision is an enterprise document management system from CBK Soft, Turkey. A security vulnerability exists in versions prior to CBK Soft EnVision 250566 that stems from observable differences and exposure of sensitive information that could lead to account footprint identification...
CVE-2025-11948
Document Management System developed by Excellent Infotek has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...
CVE-2025-11948
Document Management System developed by Excellent Infotek has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...
CVE-2025-11948
CVE-2025-11948 affects the Document Management System by Excellent Infotek. Descriptions across Red Hat, NVD, CIRCL and CVE lists report an Arbitrary File Upload vulnerability that enables unauthenticated remote attackers to upload and execute a web shell, leading to arbitrary code execution on t...
CVE-2025-11948 Excellent Infotek|Document Management System - Arbitrary File Upload
Document Management System developed by Excellent Infotek has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...