erjinzhi 10OA 代码注入漏洞

erjinzhi 10OA is an enterprise automation system from China Binary erjinzhi. A code injection vulnerability exists in erjinzhi 10OA version 1.0, which stems from an incorrect manipulation of the parameter Name in the file /trial/mvc/finder, and could lead to a cross-site scripting attack...

WCMS 路径遍历漏洞

WCMS is a content management system CMS from the individual developers at Vedegis. A path traversal vulnerability exists in WCMS version 0.3.2 and earlier, which stems from an unknown function in the /wex/finder.php file that improperly handles the parameter p, resulting in path traversal...