101 matches found
Nanjing Hanyuan HY511 POE 安全漏洞
Nanjing Hanyuan HY511 POE is an embedded smart display panel from Nanjing Hanyuan, China. A security vulnerability exists in Nanjing Hanyuan HY511 POE versions prior to 2.1 and plugins prior to 0.1, which stems from insufficient device cookie validation, and could lead to an attacker downloading...
EUVD-2024-47767
Malicious code in bioql PyPI...
HuoCMS 安全漏洞
Suq HuoCMS is a modern content management system based on ThinkPHP6 and Vue3 developed by Nanjing Digital Flag Technology Suq Company in China. A security vulnerability exists in HuoCMS 3.5.1 and earlier versions, which stems from a file upload feature that could lead to server compromise...
HuoCMS 安全漏洞
Suq HuoCMS is a modern content management system based on ThinkPHP6 and Vue3 developed by Nanjing Digital Flag Technology Suq Company in China. A security vulnerability exists in HuoCMS version 3.5.1, which stems from a file upload feature that may bypass whitelisting restrictions and lead to...
Nanjing Guanbao Technology Development Co., Ltd. safety education and training information system has information leakage vulnerability
Nanjing Tube Bao Technology Development Co., Ltd. is a high-tech enterprise focusing on computer hardware and software research and development, sales, service and system integration. There is an information leakage vulnerability in the security education and training information system of Nanjin...
Information Leakage Vulnerability in Network Intelligence Analysis System of Stoneco (Nanjing) Information Technology Co.
Ltd. is an enterprise focusing on AI technology innovation, dedicated to promoting industry innovation through AI technology and building a customer-centric, business-scene-focused full-service system. There is an information leakage vulnerability in the network intelligence analysis system of...
CVE-2024-6730
A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...
CVE-2024-6730
CVE-2024-6730 affects Nanjing Xingyuantu Technology SparkShop (versions up to 1.1.6). The issue is an unrestricted file upload via the /api/Common/uploadFile endpoint, caused by manipulation of the file argument. This vulnerability can be triggered remotely and has been publicly disclosed. Practi...
CVE-2024-6730 Nanjing Xingyuantu Technology SparkShop uploadFile unrestricted upload
A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...
CVE-2024-6730 Nanjing Xingyuantu Technology SparkShop uploadFile unrestricted upload
A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...
SQL Injection Vulnerability in Talent Recruitment Information Platform of Nanjing Kuchi Information Technology Co.
Ltd. is a software enterprise specializing in serving the personnel work of colleges and universities in China. There is a SQL injection vulnerability in the talent recruitment information platform of Nanjing Kuchi Information Technology Co., Ltd. that can be exploited by attackers to obtain...
bestay-express-jiefang-road.hotelsinnanjing.com Cross Site Scripting vulnerability OBB-3829676
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Nanjing Thing Orange Information Technology Co., Ltd. home recipe book APP has information leakage vulnerability
Home-Cooked Recipe Book APP is a food recipe software. Nanjing Thing Orange Information Technology Co., Ltd. has an information leakage vulnerability in Home Recipe Book APP, which can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Physical Examination File Management System of Nanjing Zhongwei Xin Software Technology Co.
Ltd. is a national high-tech enterprise relying on independent research and development and technological innovation to form the core technology to carry out production and operation. There is a SQL injection vulnerability in the Medical Examination File Management System of Nanjing Zhongwei Xin...
Weak Password Vulnerability in SDWAN Smart Gateway Application System of Nanjing Huazhida Network Technology Co.
Nanjing Huazhida Network Technology Co., Ltd. is a provider specializing in open network, SD-WAN solutions and technical services. A weak password vulnerability exists in the SDWAN Smart Gateway application system of Nanjing Huazhida Network Technology Co. Ltd, which can be exploited by attackers...
Nanjing Haoguan Technology Co., Ltd. building system there are logical flaws vulnerability
Nanjing Hao Guan Technology Co., Ltd. is mainly engaged in website construction, website optimization and promotion, computer machine and accessories sales, monitoring and security, audio and lighting, LED screen and other weak power engineering. Nanjing Hao Guan Technology Co., Ltd. station...
Command Execution Vulnerability in Nanjing Guanbang Network Technology Co.
Nanjing Guanbang Network Technology Co., Ltd. was founded in September 2004, is a private software enterprise which has passed the double-soft recognition of Jiangsu Province Information Industry Department. It is mainly engaged in the research and development and sales of education and teaching...
File Upload Vulnerability in School Training and Teaching Management System of Nanjing Suwen Software Technology Co.
Nanjing Suwen Software Technology Co., Ltd. was formerly known as the software studio established in 2001 in Gulou District, Nanjing, 2002, the studio began to involve in the performance management system, course selection management system, faculty management system development and design, in...
Command Execution Vulnerability in Intelligent Inspection System of Nanjing Sanshang Computer Software Development Co.
Intelligent inspection system is a comprehensive monitoring and scheduling management platform that combines GPS satellite positioning technology, GIS geographic information technology, GPRS/3G network communication technology, LBS base station positioning technology and Internet sensing technolo...
Unauthorized access vulnerability in the background management system of Nanjing Jiuzhe Software Technology Co.
Nanjing Jiuzhe Software Technology Co., Ltd. is a mobile Internet customized software service provider. There is an unauthorized access vulnerability in the back-end management system of Nanjing Jiuzhe Software Technology Co...