CVE-2026-5935

IBM Total Storage Service Console TSSC / TS4500 IMC 9.2, 9.3, 9.4, 9.5, 9.6 TSSC/IMC could allow an unauthenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input...

CVE-2026-20095 Cisco Integrated Management Controller Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is due to improper validation...

Zhide Modern Farm Digital Integrated Management System 安全漏洞

Zhide Modern Farm Digital Integrated Management System is a modern farm digital integrated management system from Zhide, China. A security vulnerability exists in Zhide Modern Farm Digital Integrated Management System version 1.0, which originates from a vulnerability that could lead to the...

Information leakage vulnerability in the integrated management platform of intelligent park of Zhejiang Dahua Technology Co.(CNVD-2023-23875)

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. An information leakage vulnerability exists in the integrated management platform of Zhejiang Dahua Technology Co.'s Smart Park, which can be exploited by...

File Upload Vulnerability in Intelligent Park Comprehensive Management Platform of Zhejiang Dahua Technology Co.(CNVD-2023-03860)

Zhejiang Dahua Technology Co., Ltd. is a video-centered intelligent IOT solution provider and operation service provider. A file upload vulnerability exists in the integrated management platform of Zhejiang Dahua Technology Co., Ltd. that can be exploited by an attacker to gain server privileges...

SQL Injection Vulnerability in River Management System Comprehensive Management Platform of Siltronic Technology Co.

Siltronic Ltd. is an information service provider for disaster reduction and profitability in China. A SQL injection vulnerability exists in SCT's comprehensive river management platform, which can be exploited by attackers to obtain database information...

SQL Injection Vulnerability in Digital Campus Integrated Management System of Anhui Kexun Education Equipment Group Co.

Anhui Kexun Education Equipment Group Co., Ltd. is a comprehensive service provider dedicated to industry software research and development, promotion and service. There is a SQL injection vulnerability in the Digital Campus Management System of Anhui Kexun Education Equipment Group Co., Ltd, whi...

Weak Password Vulnerability in Zhongfu Information Security and Confidentiality Comprehensive Management Platform

Founded in 2002, CDF Information specializes in the research, development, sales and provision of total solutions for information security products. A weak password vulnerability exists in Zung Fu's comprehensive information security and confidentiality management platform, which can be exploited...

Weak Password Vulnerability in Intelligent Building Integrated Management Platform of Qingdao Neusoft Carrier Intelligent Electronics Co.

Qingdao Neusoft Carrier Intelligent Electronics Co., Ltd. is a high-tech enterprise integrating R&D, production, office and life. Qingdao Neusoft Carrier Intelligent Electronics Co., Ltd. intelligent building integrated management platform has a weak password vulnerability, which can be exploited...

IBM Flex System x222 servers IMM2 Information Disclosure Vulnerability

The IBM Flex System x222 servers are an x222 series blade server from IBM in the U.S. Integrated Management Module II IMM2 is one of the... A security vulnerability exists in the TPM of IMM2 on IBM Flex System x222 servers, which stems from a failure to properly configure it. A remote attacker...

Hitachi JP1/Integrated Management跨站脚本漏洞

Hitachi JP1/Integrated Management是实时监控服务器管理系统并且提交故障解决方案的综合管理系统。 由于某些关于查看的未明输入在返回用户钱未能正确过滤，攻击者可以利用漏洞在受影响站点上下文的用户浏览器中执行任意HTML 和脚本代码。 0 Hitachi JP1/Integrated Management IM 厂商补丁： Hitachi ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Cross site scripting

Cross-site scripting XSS vulnerability in Hitachi JP1/Integrated Management - Service Support 08-10 through 08-10-05, 08-11 through 08-11-03, and 08-50 through 08-50-03 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2008-5717

CVE-2008-5717 is a cross-site scripting vulnerability in Hitachi JP1/Integrated Management - Service Support for Windows. Affected components/version ranges include 08-10 to 08-10-05, 08-11 to 08-11-03, and 08-50 to 08-50-03. Root cause: improper handling of input in the web interface allows inje...

CVE-2008-5717

Cross-site scripting XSS vulnerability in Hitachi JP1/Integrated Management - Service Support 08-10 through 08-10-05, 08-11 through 08-11-03, and 08-50 through 08-50-03 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability

Description Microsoft Windows is prone to a local denial-of-service vulnerability because the operating system fails to handle certain API calls with unexpected parameters. A local unprivileged attacker may exploit this issue by executing a malicious application. Successful exploits will allow...