2 matches found
CVE-2022-30048
CVE-2022-30048 affects Mingsoft MCMS 5.2.7 and is a SQL injection vulnerability in the /mdiy/dict/list endpoint exploited through the orderBy parameter. Root cause: unvalidated input leading to SQL injection; impact includes potential data exposure or modification as indicated by CVSS metrics (CV...
Lenovo SHAREit Wifi hotspot information leakage vulnerability
Lenovo SHAREit 茄子快传 for Windows is a Windows-based file-sharing software from Lenovo, China.Wifi hotspot is one of the Wifi hotspot components. An information disclosure vulnerability exists in the Wifi hotspot component of Lenovo SHAREit for Windows versions prior to 3.2.0. A remote attacker can...