CVE-2026-9550

CVE-2026-9550 affects Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform version 1.3.0. The issue involves path traversal in a component handling the file path /SubstationWEBV2/app/..;/main/upfile, caused by manipulation of the argument path. The vulnerability permits...

CVE-2026-9550 Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform upfile path traversal

A vulnerability was determined in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. Affected by this issue is some unknown functionality of the file /SubstationWEBV2/app/..;/main/upfile. Executing a manipulation of the argument path can lead to path traversal...

CVE-2026-9523

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

EUVD-2026-31782

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

EUVD-2026-26833

A vulnerability has been found in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. This affects an unknown function of the file /SubstationWEBV2/main/elecMaxMinAvgValue. The manipulation of the argument fCircuitids leads to sql injection. The attack may be...

Lenovo Filez 安全漏洞

Lenovo Filez is an enterprise cloud storage service provided by Lenovo Corporation. Lenovo FileZ has a security vulnerability, which stems from the possibility for locally authenticated users under certain conditions to retrieve sensitive data stored in log files...

Lenovo Filez 安全漏洞

Lenovo Filez is an enterprise cloud storage service provided by Lenovo Corporation. There is a security vulnerability in Lenovo Filez, which stems from improper certificate verification. This vulnerability may allow users who are capable of intercepting network traffic to access sensitive user da...

Chanjet TPlus code issue vulnerabilities

Chanjet TPlus is an enterprise cloud platform developed by Chanjet Corporation. Versions of Chanjet TPlus 16.x and earlier contained a code vulnerability caused by a .NET deserialization issue in the AjaxPro endpoint, which could lead to remote code execution...

CVE-2025-15016

Enterprise Cloud Database developed by Ragic has a Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information and log into the system as any user...

CVE-2025-15016

Enterprise Cloud Database developed by Ragic has a Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information and log into the system as any user...

CVE-2025-15016 Ragic｜Enterprise Cloud Database - Hard-coded Cryptographic Key

Enterprise Cloud Database developed by Ragic has a Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information and log into the system as any user...

CVE-2025-15016

The CVE-2025-15016 entry relates to Ragic’s Enterprise Cloud Database, which is vulnerable due to a hard-coded cryptographic key that can be exploited by unauthenticated remote attackers to generate authentication data and log in as any user. Affected component: Ragic Enterprise Cloud Database (c...

EUVD-2025-204688

Enterprise Cloud Database developed by Ragic has a Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information and log into the system as any user...

EUVD-2025-204689

Enterprise Cloud Database developed by Ragic has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

CVE-2025-15015 Ragic｜Enterprise Cloud Database - Arbitrary File Read

Enterprise Cloud Database developed by Ragic has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

CVE-2025-15015

The CVE-2025-15015 entry concerns Ragic’s Enterprise Cloud Database with an Arbitrary File Read via Relative Path Traversal. The vulnerability is exploitable by unauthenticated remote attackers and could allow downloading arbitrary system files. Multiple connected sources confirm the issue but do...

Ragic Enterprise Cloud Database 安全漏洞

Ragic Enterprise Cloud Database is an enterprise cloud database from China Immediate Technology Ragic. A security vulnerability exists in Ragic Enterprise Cloud Database that stems from the use of hard-coded encryption keys, which could allow an unauthenticated, remote attacker to utilize a fixed...

PT-2025-52625

Name of the Vulnerable Software and Affected Versions Ragic Enterprise Cloud Database affected versions not specified Description An unauthenticated remote attacker can exploit a Relative Path Traversal issue to download arbitrary system files. The issue is an Arbitrary File Read impacting the...

Ragic Enterprise Cloud Database 安全漏洞

Ragic Enterprise Cloud Database is an enterprise cloud database from China Immediate Technology Ragic. A security vulnerability exists in Ragic Enterprise Cloud Database that originates from relative path traversal and could allow an unauthenticated, remote attacker to download arbitrary system...

CVE-2025-11675

Enterprise Cloud Database developed by Ragic has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...