Lucene search
K

26 matches found

CNNVD
CNNVD
added 2025/02/12 12:0 a.m.6 views

Q-Free MAXTIME Suite SQL注入漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A SQL injection vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from the editUserGroupMenu endpoint in maxprofile/menu/model.lua that does not properly handle user...

7.6CVSS8.1AI score0.00644EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.6 views

Q-Free MAXTIME Suite 代码问题漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A code issue vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from files uploaded without restrictions on dangerous types. An attacker could exploit the vulnerabili...

8.8CVSS6.8AI score0.00846EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.8 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/setup/routes.lua. An...

7.5CVSS6.6AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/menu/routes.lua. An...

9.8CVSS6.7AI score0.01073EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.6 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/accounts/routes.lua. An...

9.8CVSS6.8AI score0.01073EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.6 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions that stems from a missing authorization in maxprofile/users/routes.lua. An attacker can exploit the vulnerability to...

8.8CVSS6.5AI score0.00553EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/setup/routes.lua. An...

7.5CVSS6.7AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.9 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/setup/routes.lua. An...

7.5CVSS6.8AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/setup/routes.lua. An...

7.5CVSS6.7AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions that originates from a missing authorization in maxprofile/user-groups/routes.lua. An attacker can exploit the...

4.3CVSS6.4AI score0.00287EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/setup/routes.lua. An...

7.5CVSS6.7AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.7 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions that originates from a missing authorization in maxprofile/user-groups/routes.lua. An attacker exploiting this...

8.8CVSS6.2AI score0.00553EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 输入验证错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An input validation error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from incorrect input validation in ldbMT.so. An attacker exploiting this vulnerability...

5.5CVSS6.4AI score0.00522EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxprofile/accounts/routes.lua. An...

9.8CVSS6.8AI score0.01073EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.6 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions. An attacker could exploit the vulnerability to overwrite sensitive files via a specially crafted HTTP request...

7.2CVSS6.3AI score0.00809EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and earlier versions, which stems from. An attacker could exploit the vulnerability to delete sensitive files via a specially crafted HT...

6.5CVSS6.3AI score0.00895EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions. An attacker could exploit the vulnerability to enumerate valid usernames via a specially crafted HTTP request...

5.3CVSS6.4AI score0.00709EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions. An attacker could exploit the vulnerability to read sensitive files via a specially crafted HTTP request...

4.9CVSS6.3AI score0.00843EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.4 views

Q-Free MAXTIME Suite 访问控制错误漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. An access control error vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions, which stems from a lack of authentication for critical functions in maxtime/handleRoute.lua. An attacke...

9.8CVSS6.7AI score0.01073EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.3 views

Q-Free MAXTIME Suite 安全漏洞

Q-Free MAXTIME Suite is a software suite for local traffic signal management from Q-Free. A security vulnerability exists in Q-Free MAXTIME Suite version 2.11.0 and prior versions. An attacker could exploit the vulnerability to read sensitive files via a specially crafted HTTP request...

4.9CVSS6.3AI score0.00843EPSS
Exploits0References1
Rows per page
Query Builder