ELECOM WRC-300FEBK-S Arbitrary Command Execution Vulnerability

The ELECOM WRC-300FEBK-S is a wireless access device. An arbitrary command execution vulnerability exists in the ELECOM WRC-300FEBK-S, which can be exploited by an attacker to execute arbitrary OS commands...

Command Execution Vulnerability in MOXA AWK-1131A

The AWK-1131A is an industrial-grade wireless AP. A command execution vulnerability exists in the MOXA AWK-1131A, which can be exploited by an attacker to execute malicious code...

Command execution vulnerability in songcms backend (CNVD-2021-12674)

SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. A command execution vulnerability exists in the backend of songcms. An attacker can...

Command Execution Vulnerability in Pyspider Crawler System

Pyspider is a web crawler system. Pyspider crawler system has a command execution vulnerability that can be exploited by an attacker to remotely execute code by injecting malicious code into the project manager, controlling the entire server, and carrying out intranet infiltration, DDos and other...

Command execution vulnerability in the backend of the Guojiz international web site navigation system (CNVD-2021-12808)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. A command execution vulnerability exists in the backend of Guojiz International Website Navigation System. An...

Command execution vulnerability in the backend of the Guojiz international web site navigation system (CNVD-2021-12803)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz international web site navigation system back-end command execution vulnerability, an attacker can use...

Command execution vulnerability in the backend of the Guojiz international web site navigation system (CNVD-2021-12802)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz international web site navigation system back-end command execution vulnerability, an attacker can use...

Command execution vulnerability in the backend of the Guojiz international web site navigation system (CNVD-2021-12801)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz international web site navigation system back-end command execution vulnerability, an attacker can use...

Command Execution Vulnerability in Bacardi CMS Microstore (CNVD-2021-12800)

Bacardi CMS MicroMall is a free and open source object-oriented multi-store multi-user micro-mall PHP development framework. Bacardi CMS Microstore has a command execution vulnerability. Attackers can use this vulnerability to obtain control of the server...

XML Entity Injection Vulnerability in Scrap Recycling Alliance App

Scrap Recycling Union APP is a mobile software that focuses on the functions related to scrap recycling. The Scrap Recycling Alliance APP suffers from an XML entity injection vulnerability. An attacker can exploit the vulnerability by constructing malicious entities that result in the execution o...

Command Execution Vulnerability in NBR Router EWEB Network Management System at Riptide Networks Inc.

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and more. A command execution vulnerability exists in the EWEB network management system of...

openSUSE Security Update : hawk2 (openSUSE-2021-147)

This update for hawk2 fixes the following issues : hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed : - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project. C...

OPENSUSE-SU-2021:0147-1 Security update for hawk2

This update for hawk2 fixes the following issues: hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project...

OPENSUSE-SU-2021:0144-1 Security update for hawk2

This update for hawk2 fixes the following issues: hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project...

SUSE-SU-2021:0200-1 Security update for hawk2

This update for hawk2 fixes the following issues: hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998...

SUSE-SU-2021:0198-1 Security update for hawk2

This update for hawk2 fixes the following issues: hawk2 was updated to version 2.5. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998...

SUSE-SU-2021:0192-1 Security update for hawk2

This update for hawk2 fixes the following issues: hawk2 was updated to version 2.5. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998...

Command Execution Vulnerability in eClass Junior's Integrated Platform for Small Schools

eClass Junior is a full-featured campus integrated platform designed to meet the needs of elementary school. eClass Junior is divided into five parts according to different functions, namely, "Campus Zone", "Learning Center", "Classroom Zone", "Teachers' Workspace", and "Administration Center",...

Code Execution Vulnerability in the Backend of Ecommerce Power Mall System of Shenzhen Yitongding Multimedia Co.

The business scope of Shenzhen ETD Multimedia Co., Ltd. includes: website construction, mobile WeChat mini-program development, mini-program community group-buying system, VI design, network operation, cloud products-operation and maintenance solutions. There is a code execution vulnerability in...

Command Execution Vulnerability in the Seal Monitoring Management System of Beijing Huilang Times Technology Company Limited (CNVD-2021-10517)

Beijing Huilang Times Technology Co., Ltd. was founded in 2005, is a national high-tech enterprises and dual-soft certified enterprises, the products are a little bit of banknote detectors, seal monitoring and management equipment, automatic check printers, financial binding machines and other...