16 matches found
CVE-2024-42676
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...
CVE-2024-42677
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...
CVE-2024-42676
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...
CVE-2024-42677
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...
CVE-2024-42676
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...
CVE-2024-42677
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...
CVE-2024-42676
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...
CVE-2024-42676
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...
CVE-2024-42677
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...
Huizhi enterprise resource management system 安全漏洞
Huizhi enterprise resource management system is an enterprise resource planning ERP system from Shenzhen Huizhi Software Development Co. A security vulnerability exists in Huizhi enterprise resource management system version v.1.0, which originates from the...
PT-2024-30101 · Huizhi · Huizhi
Name of the Vulnerable Software and Affected Versions: Huizhi enterprise resource management system versions 1.0 and before Description: The issue allows a remote attacker to execute arbitrary code via the "/nssys/common/Upload.aspx?Action=DNPageAjaxPostBack" component. This is a File Upload...
CVE-2024-42677
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...
Huizhi enterprise resource management system 安全漏洞
Huizhi enterprise resource management system is an enterprise resource planning ERP system from Shenzhen Huizhi Software Development Co. A security vulnerability exists in Huizhi enterprise resource management system version v.1.0, which originates from the /nssys/common/filehandle.aspx component...
CVE-2024-42676
Huizhi enterprise resource management system v1.0 and earlier is affected by a File Upload vulnerability in the /nssys/common/Upload.aspx?Action=DNPageAjaxPostBack endpoint that allows remote code execution. The issue arises from the file upload functionality, enabling an attacker to run arbitrar...
PT-2024-30102 · Huizhi · Huizhi
Name of the Vulnerable Software and Affected Versions: Huizhi enterprise resource management system versions 1.0 and earlier Description: The issue allows a local attacker to obtain sensitive information via the "/nssys/common/filehandle.aspx" component. A local attacker can exploit this to gain...
CVE-2024-42677
CVE-2024-42677 affects Huizhi enterprise resource management system v1.0 and earlier. The issue is a local information-disclosure vulnerability in the /nssys/common/filehandle.aspx component, enabling a local attacker to obtain sensitive data. The Red Hat/NVD/CVE entries corroborate a local-attac...