CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-16789

Malicious code in bioql PyPI...

9.8CVSS6.9AI score0.00916EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 9:39 a.m.•7 views

CVE-2024-1012

A vulnerability, which was classified as critical, has been found in Wanhu ezOFFICE 11.1.0. This issue affects some unknown processing of the file defaultroot/platform/bpm/workflow/operate/wfprintnum.jsp. The manipulation of the argument recordId leads to sql injection. The attack may be initiate...

9.8CVSS9.8AI score0.00916EPSS

Exploits1References1

CNVD•added 2024/02/19 12:0 a.m.•34 views

File Upload Vulnerability in Wando ezOFFICE Collaboration Management Platform (CNVD-2024-14208)

Wando ezOFFICE collaborative management platform is a comprehensive information base application platform. A file upload vulnerability exists in Wando ezOFFICE Collaborative Management Platform, which can be exploited by an attacker to gain server privileges...

7AI score

Exploits0

OSV•added 2024/01/31 8:15 a.m.•1 views

CVE-2024-1012

9.8CVSS5.7AI score0.00916EPSS

Exploits1References3

NVD•added 2024/01/31 8:15 a.m.•10 views

CVE-2024-1012

9.8CVSS7.4AI score0.00916EPSS

Exploits1References3

Prion•added 2024/01/31 8:15 a.m.•20 views

Sql injection

6.5CVSS7.7AI score0.00916EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2024/01/31 7:10 a.m.•4 views

CVE-2024-1012 Wanhu ezOFFICE wf_printnum.jsp sql injection

6.5CVSS8.3AI score0.00916EPSS

Exploits1References3

Cvelist•added 2024/01/31 7:10 a.m.•29 views

CVE-2024-1012 Wanhu ezOFFICE wf_printnum.jsp sql injection

6.5CVSS10AI score0.00916EPSS

Exploits1References3

CVE•added 2024/01/31 7:10 a.m.•42 views

CVE-2024-1012

Wanhu ezOFFICE 11.1.0 is affected by a SQL injection in wf_printnum.jsp via the recordId parameter. The issue, described as critical and remotely exploitable, affects processing of defaultroot/platform/bpm/work_flow/operate/wf_printnum.jsp and has been publicly disclosed (VDB-252281). Multiple so...

9.8CVSS9.7AI score0.00916EPSS

Exploits1References3Affected Software1

CNNVD•added 2024/01/31 12:0 a.m.•2 views

Wanhu ezOFFICE SQL Injection Vulnerability

Wanhu ezOFFICE is a comprehensive office suite software from Wanhu, a Chinese company. A SQL injection vulnerability exists in Wanhu ezOFFICE version 11.1.0, which originates in defaultroot/platform/bpm/workflow/operate/wfprintnum.jsp, which contains unknown processing that can lead to SQL...

9.8CVSS7.9AI score0.00916EPSS

Exploits1References4

Positive Technologies•added 2024/01/31 12:0 a.m.•4 views

PT-2024-16042 · Wanhu · Wanhu Ezoffice

Name of the Vulnerable Software and Affected Versions: Wanhu ezOFFICE version 11.1.0 Description: A critical issue has been found in the processing of the file defaultroot/platform/bpm/work flow/operate/wf printnum.jsp. The manipulation of the recordId argument leads to sql injection. The attack...

9.8CVSS6.8AI score0.00916EPSS

Exploits1References7

CNVD•added 2021/07/15 12:0 a.m.•9 views

File upload vulnerability in Wando ezOFFICE collaboration management platform (CNVD-2021-54069)

7.1AI score

Exploits0

CNVD•added 2021/04/29 12:0 a.m.•2 views

Arbitrary File Download Vulnerability in Wando ezOFFICE Collaboration Management Platform

Wando ezOFFICE collaborative management platform is a comprehensive information base application platform. An arbitrary file download vulnerability exists in Wando ezOFFICE Collaborative Management Platform. An attacker can exploit the vulnerability to download arbitrary files...

6.8AI score

Exploits0

CNVD•added 2021/04/14 12:0 a.m.•2 views

File Upload Vulnerability in ezOFFICE Collaboration Management Platform

Wando Ezoffice system is a set of jsp-based oa system , the system is based on J2EE architecture technology of three-tier architecture , completely B / S architecture , widely used in various industries . ezOFFICE collaborative management platform there is a file upload vulnerability , attackers...

7AI score

Exploits0

CNVD•added 2021/01/29 12:0 a.m.•5 views

Logic flaws exist in ezOFFICE Collaborative Management Platform of Beijing Wando Network Technology Co.

ezOFFICE collaborative management platform is a comprehensive information base application platform. There is a logic flaw vulnerability in the ezOFFICE Collaborative Management Platform of Beijing Wando Network Technology Co. Ltd, which can be exploited by an attacker to reset a user's password...

6.7AI score

Exploits0

CNVD•added 2017/08/11 12:0 a.m.•1 views

Wando ezoffice Collaboration Management Platform has an overstepping vulnerability

Wando ezOFFICE collaborative management platform is a comprehensive information base application platform. Wando ezOFFICE Collaborative Management Platform has an overstepping vulnerability that allows an attacker to successfully achieve elevation of privilege through ordinary user identity...

6.9AI score

Exploits0

CNVD•added 2017/04/14 12:0 a.m.•1 views

S2-045 Remote Code Execution Vulnerability in Wando ezOffice Login Jump Screen

Manto ezOffice is a comprehensive information base application platform. Wando ezOffice uses Apache middleware as the framework, the login jump interface exists S2-045 remote code execution vulnerability. This vulnerability allows an attacker to remotely execute commands and gain server privilege...

8.4AI score

Exploits0

CNVD•added 2017/03/12 12:0 a.m.•1 views

SQL Injection Vulnerability in Webservice of Wando ezOFFICE Collaboration Office System

Wando ezOFFICE collaborative management platform is a comprehensive information base application platform. A SQL injection vulnerability exists in the Wando ezOFFICE Collaborative Office System webservice. The lack of filtering of the 'SOAP unitLevel' parameter allows attackers to exploit the...

7.6AI score

Exploits0