Lucene search
+L

342 matches found

Openbugbounty
Openbugbounty
added 2022/02/22 2:10 p.m.11 views

ming-che.com Cross Site Scripting vulnerability OBB-2382420

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/02/18 12:0 a.m.42 views

GHSA-2PMW-CVC7-FRVH SQL injection in MCMS

A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...

9.8CVSS9.6AI score0.01385EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/17 4:15 p.m.2 views

CVE-2021-44868

A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...

9.8CVSS7.2AI score0.01385EPSS
Exploits1References2
OSV
OSV
added 2022/02/17 4:15 p.m.7 views

CVE-2021-44868

A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...

9.8CVSS7.3AI score0.01385EPSS
Exploits1References1
Prion
Prion
added 2022/02/17 4:15 p.m.16 views

Sql injection

A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...

7.5CVSS9.5AI score0.01385EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/02/17 3:44 p.m.101 views

CVE-2021-44868

The vulnerability CVE-2021-44868 affects Ming-soft MCMS v5.1. A SQL injection flaw exists in the /ms/cms/content/list.do endpoint, enabling potentially unauthorized access to backend data. Documented under CVSS metrics, the issue has a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attack ve...

9.8CVSS9.5AI score0.01385EPSS
In wildExploits1References1Affected Software1
Github Security Blog
Github Security Blog
added 2022/02/09 10:18 p.m.30 views

SQL injection without credentials in ming-soft MCMS

An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...

9.8CVSS9.7AI score0.01145EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/02/09 10:18 p.m.48 views

GHSA-H3HW-G4HM-7GR4 SQL injection without credentials in ming-soft MCMS

An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...

9.8CVSS9.8AI score0.01145EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2018-0212)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.4AI score0.02489EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2017-0070)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.02131EPSS
Exploits4References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2017-0108)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.01248EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2021/07/28 12:0 a.m.232 views

eGain Chat 15.5.5 Cross Site Scripting

Exploit Title: eGain Chat 15.5.5 Cross-Site Scripting Vendor Homepage: https://www.egain.com/ Software Link: https://www.egain.com/chat-software/ Exploit Authors: Brandon Ming Yang Ho https://www.linkedin.com/in/minhobrandon/, Hassy Vinod Eshan https://www.linkedin.com/in/hassy-vinod/ CVE:...

6.4AI score0.00912EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2021/02/07 12:0 a.m.63 views

Ming-Soft MCMS SQL Injection (CVE-2020-23262)

An SQL injection vulnerability exists in Ming-Soft MCMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.2AI score0.01145EPSS
Exploits1
OSV
OSV
added 2021/01/26 6:15 p.m.6 views

CVE-2020-23262

An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...

9.8CVSS7.3AI score0.01145EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.7 views

Ming-soft Mcms SQL Injection Vulnerability

A SQL injection vulnerability exists in Ming-soft Mcms version 5.0. An attacker can exploit the SQL injection without logging in via /mcms/view.do...

9.8CVSS7.4AI score0.01145EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/01/22 3:35 p.m.29 views

CVE-2020-23262

An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...

9.9AI score0.01145EPSS
Exploits1References1
CNVD
CNVD
added 2020/04/20 12:0 a.m.5 views

Ming buffer overflow vulnerability (CNVD-2021-25705)

Ming libming is a Flash SWF output library written in C language. A buffer overflow vulnerability exists in the 'decompileIF' function of the decompile.c file in Ming version 0.4.8, which originates when a networked system or product performs an operation in memory without properly validating the...

9.1CVSS7.3AI score0.01702EPSS
Exploits1References1
CNVD
CNVD
added 2020/04/20 12:0 a.m.7 views

Ming Buffer Overflow Vulnerability

Ming libming is a Flash SWF output library written in C language. A buffer overflow vulnerability exists in the 'decompileIF' function of the decompile.c file in Ming version 0.4.8, which originates when a networked system or product performs an operation in memory without properly validating the...

9.1CVSS7.3AI score0.01702EPSS
Exploits1References1
NVD
NVD
added 2020/04/19 7:15 p.m.26 views

CVE-2020-11895

Ming aka libming 0.4.8 has a heap-based buffer over-read 2 bytes in the function decompileIF in decompile.c...

9.1CVSS9.4AI score0.01702EPSS
Exploits1References1
NVD
NVD
added 2020/04/19 7:15 p.m.24 views

CVE-2020-11894

Ming aka libming 0.4.8 has a heap-based buffer over-read 8 bytes in the function decompileIF in decompile.c...

9.1CVSS9.4AI score0.01702EPSS
Exploits1References1
Rows per page
Query Builder