14 matches found
CVE-2025-15446
A flaw has been found in Seeyon Zhiyuan OA Web Application System up to 20251223. The impacted element is an unknown function of the file /assetsGroupReport/fixedAssetsList.j%73p. Executing a manipulation of the argument unitCode can lead to sql injection. The attack may be performed from remote...
EUVD-2026-0923
A flaw has been found in Seeyon Zhiyuan OA Web Application System up to 20251223. The impacted element is an unknown function of the file /assetsGroupReport/fixedAssetsList.j%73p. Executing a manipulation of the argument unitCode can lead to sql injection. The attack may be performed from remote...
CVE-2025-15446
REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: The vendor mentioned in the original disclosure filed a report that this issue affects a different vendor. The research...
编号撤回
Seeyon Zhiyuan OA Web Application System is a comprehensive office automation platform from Seeyon. A SQL injection vulnerability exists in Seeyon Zhiyuan OA Web Application System version 20251223 and earlier versions, which originates from the incorrect operation of the parameter unitCode in th...
EUVD-2014-8966
Malware in sbrugna...
Update 15.17 for Microsoft Dynamics 365 Business Central 2019 Release Wave 2 (Application Build 15.17.49440, Platform Build 15.0.49431)
Update 15.17 for Microsoft Dynamics 365 Business Central 2019 Release Wave 2 Application Build 15.17.49440, Platform Build 15.0.49431 This article applies to Microsoft Dynamics 365 Business Central 2019 Release Wave 2 for all countries and all language locales. Overview This update replaces...
Update 17.10 for Microsoft Dynamics 365 Business Central 2020 Release Wave 2 (Application Build 17.10.29463, Platform Build 17.0.29460): September 14, 2021 (KB5006075)
Update 17.10 for Microsoft Dynamics 365 Business Central 2020 Release Wave 2 Application Build 17.10.29463, Platform Build 17.0.29460: September 14, 2021 KB5006075 Overview This update replaces previously released updates. You should always install the latest update. This update also fixes a...
Thomson Reuters Fixed Assets CS <=13.1.4 - Privileges Escalation Exploit
Exploit for windows platform in category local exploits Exploit Title: Thomson Reuters Fixed Assets CS Windows 7, Windows 8 CVE : 2014-9141 Product Affected: Fixed Assets CS =13.1.4 Workstation Install Note: 2003/2008 Terminal Services/Published apps may be vulnerable, depending on system...
CVE-2014-9141
The installer in Thomson Reuters Fixed Assets CS 13.1.4 and earlier uses weak permissions for connectbgdl.exe, which allows local users to execute arbitrary code by modifying this program...
Code injection
The installer in Thomson Reuters Fixed Assets CS 13.1.4 and earlier uses weak permissions for connectbgdl.exe, which allows local users to execute arbitrary code by modifying this program...
CVE-2014-9141
CVE-2014-9141 affects Thomson Reuters Fixed Assets CS 13.1.4 and earlier. The installer exposes weak permissions on connectbgdl.exe, enabling a local user to modify the program and achieve arbitrary code execution. The vulnerability scope is local, with no user interaction required stated in the ...
CVE-2014-9141
The installer in Thomson Reuters Fixed Assets CS 13.1.4 and earlier uses weak permissions for connectbgdl.exe, which allows local users to execute arbitrary code by modifying this program...
Thomson Reuters Fixed Assets CS 13.1.4 - Local Privilege Escalation
Thomson Reuters Fixed Assets CS 13.1.4 - Local Privilege Escalation Exploit Title: Thomson Reuters Fixed Assets CS Windows 7, Windows 8 CVE : 2014-9141 Product Affected: Fixed Assets CS =13.1.4 Workstation Install Note: 2003/2008 Terminal Services/Published apps may be vulnerable, depending on...
Thomson Reuters Fixed Assets CS 13.1.4 - Local Privilege Escalation
Exploit Title: Thomson Reuters Fixed Assets CS Windows 7, Windows 8 CVE : 2014-9141 Product Affected: Fixed Assets CS =13.1.4 Workstation Install Note: 2003/2008 Terminal Services/Published apps may be vulnerable, depending on system configuration. This vulnerability has been reference checked...