55 matches found
Network-Service-Exploitation-Lab-VAPT-Project-
đ Network Service Exploitation Lab VAPT Project đ Overvi...
CVE-2026-32891 Anchorr Privilege Escalation: Jellyseerr User â Anchorr Admin via Stored XSS
Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server. Versions 1.4.1 and below contain a stored XSS vulnerability in the Jellyseerr user selector. Jellyseerr allows any account holder to execute arbitrary JavaScript in the...
EUVD-2021-2882
Malicious code in bioql PyPI...
File Upload Vulnerability in Multi-service Intelligent Gateway of Resconda Technology Development Co.
Focusing on the field of fiber optic broadband access, Riseconda Technology Development Co., Ltd. is committed to the convergence of fiber optic technology, Ethernet technology and broadband access technology. A file upload vulnerability exists in the Multi-service Intelligent Gateway of Risconda...
CVE-2025-1536
A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has been declared as critical. This vulnerability affects unknown code of the file /vpn/vpntemplatestyle.php of the component Request Parameter Handler. The manipulation of the argument stylenum leads to os...
Command Execution Vulnerability in EG3220 of Beijing StarNet Ruijie Network Technology Co.
Ltd. EG3220 is a new generation of multi-service security gateway. The EG3220 has a command execution vulnerability that can be exploited by an attacker to gain control of the server...
CVE-2024-28520
File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component...
CVE-2024-28520
File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component...
CVE-2024-28520
File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component...
CVE-2024-28520
CVE-2024-28520 is a file upload vulnerability in Byzoro Networksâ Smart multi-service security gateway intelligent management platform, version S210. The issue stems from the uploadfile.php component, enabling an attacker to obtain sensitive information. The vulnerability has a CVSSv3.1 vector of...
Command Execution Vulnerability in EG3210 of Beijing StarNet Ruijie Network Technology Co. Ltd (CNVD-2024-11054)
The EG3210 is a multi-service security gateway. A command execution vulnerability exists in the EG3210, which can be exploited by an attacker to gain control of a server...
Information Disclosure Vulnerability in EG2000SE of Beijing StarNet Ruijie Network Technology Co.
The EG2000SE is a multi-service router. An information disclosure vulnerability exists in the EG2000SE of Beijing StarNet Ruijie Network Technology Company Limited, which can be exploited by attackers to obtain sensitive information...
CVE-2023-5494 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform download.php os command injection
A vulnerability was found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928 and classified as critical. Affected by this issue is some unknown functionality of the file /log/download.php. The manipulation of the argument file leads to os command...
CVE-2023-5494
Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (versions up to 20230928) contains an OS command injection vulnerability in the /log/download.php endpoint. The issue arises from manipulating the file argument, allowing remote exploitation. Public disclosures exist (...
CVE-2023-5493 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform web.php unrestricted upload
A vulnerability has been found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /useratte/web.php. The manipulation of the argument fileupload leads t...
CVE-2023-5492
CVE-2023-5492 affects Byzoro/Beijing Baichuo S45F Multi-Service Secure Gateway Intelligent Management Platform (up to 20230928). The flaw is in /sysmanage/licence.php: manipulation of file_upload enables unrestricted file upload, enabling remote attack. Documentation consistently states an arbitr...
CVE-2023-5492 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform licence.php unrestricted upload
A vulnerability, which was classified as critical, was found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. Affected is an unknown function of the file /sysmanage/licence.php. The manipulation of the argument fileupload leads to unrestricted...
CVE-2023-5491 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform updatelib.php unrestricted upload
A vulnerability, which was classified as critical, has been found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. This issue affects some unknown processing of the file /sysmanage/updatelib.php. The manipulation of the argument fileupload leads to...
CVE-2023-5491
CVE-2023-5491 affects Byzoro Smart S45F and Beijing Baichuo Smart S45F Multi-Service Secure Gateway platforms up to 20230928. A vulnerability in /sysmanage/updatelib.php, specifically the file_upload argument, allows unrestricted upload. The issue can be triggered remotely and an exploit has been...
CVE-2023-5490
CVE-2023-5490 affects the Beijing Baichuo/Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (up to 20230928). The vulnerability resides in the /useratte/userattestation.php file, where manipulating the web_img argument enables unrestricted file upload, with remote exp...