12 matches found
EUVD-2023-30577
Malicious code in bioql PyPI...
CVE-2023-26784
SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...
CVE-2023-26784
SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...
PT-2023-20798 · Unknown · Kirin Fortress Machine
Name of the Vulnerable Software and Affected Versions: Kirin Fortress Machine version 1.7-2020-0610 Description: A SQL Injection issue allows attackers to execute arbitrary code via the "/admin.php?controller=admin commonuser" API endpoint, specifically through the controller parameter. This...
CVE-2023-26784
Kirin Fortress Machine v1.7-2020-0610 is affected by a SQL injection in the admin_commonuser endpoint (via /admin.php?controller=admin_commonuser), which can allow an attacker to execute arbitrary code. The NVD reports a critical CVSS v3.1 score (9.8) with network attack vector, no privileges, an...
CVE-2023-26784
SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...
Kirin Fortress Machine SQL注入漏洞
Tosec Kirin Fortress Machine is a series of fortress machines from Cosco Kirin Technology Tosec in Beijing, China. A security vulnerability exists in Kirin Fortress Machine version v.1.7-2020-0610, which stems from the presence of a SQL injection vulnerability that can be exploited by an attacker...
CVE-2023-26784
SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...
Weak Password Vulnerability in Tian Yue's O&M Security Gateway (CNVD-2021-58618)
Tian Yue O&M Security Gateway Cloud Fortress Machine is a compliance control system for controlling and auditing user O&M operations in business environment. There is a weak password vulnerability in Tian Yue Operations and Maintenance Security Gateway, which can be exploited by attackers to obta...
Unauthorized Access Vulnerability in Mingguo APT Attack (Cyber Warfare) Warning Platform (CNVD-2021-47700)
Hangzhou ACE Information Technology Co., Ltd. is a company that has been focusing on the research, development, production and sales of products in the field of network information security, such as Fortress, Remote Monitoring, Cloud Saas Service, Cloud WAF, Industrial Control, Online Remote Offi...
Logic Flaw Vulnerability in Mingguo APT Attack (Cyber Warfare) Warning Platform
Hangzhou ACE Information Technology Co., Ltd. is a company that has been focusing on the research, development, production and sales of products in the field of network information security, such as Fortress, Remote Monitoring, Cloud Saas Service, Cloud WAF, Industrial Control, Online Remote Offi...
The odd Smart Fortress machine V2. 1 There is a search box injection and repair-vulnerability warning-the black bar safety net
The odd Smart Fortress machine there is a search box injection by the 1%'//and//1=2//union//select//null,version,null,null,null,null,null,null— ! 1%';copy//qmsectextsshell//to//'/var/www/shterm/client/secqm. php'—write a file, written to the test file after we find the file is successfully writte...