Lucene search
K

101 matches found

CNNVD
CNNVD
added 2026/01/06 12:0 a.m.18 views

Nanjing Hanyuan HY511 POE 安全漏洞

Nanjing Hanyuan HY511 POE is an embedded smart display panel from Nanjing Hanyuan, China. A security vulnerability exists in Nanjing Hanyuan HY511 POE versions prior to 2.1 and plugins prior to 0.1, which stems from insufficient device cookie validation, and could lead to an attacker downloading...

9.8CVSS6.6AI score0.04617EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47767

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00427EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.5 views

HuoCMS 安全漏洞

Suq HuoCMS is a modern content management system based on ThinkPHP6 and Vue3 developed by Nanjing Digital Flag Technology Suq Company in China. A security vulnerability exists in HuoCMS 3.5.1 and earlier versions, which stems from a file upload feature that could lead to server compromise...

5.3CVSS6.6AI score0.00333EPSS
Exploits2References2
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.5 views

HuoCMS 安全漏洞

Suq HuoCMS is a modern content management system based on ThinkPHP6 and Vue3 developed by Nanjing Digital Flag Technology Suq Company in China. A security vulnerability exists in HuoCMS version 3.5.1, which stems from a file upload feature that may bypass whitelisting restrictions and lead to...

5.3CVSS6.7AI score0.00361EPSS
Exploits2References2
CNVD
CNVD
added 2025/02/05 12:0 a.m.10 views

Nanjing Guanbao Technology Development Co., Ltd. safety education and training information system has information leakage vulnerability

Nanjing Tube Bao Technology Development Co., Ltd. is a high-tech enterprise focusing on computer hardware and software research and development, sales, service and system integration. There is an information leakage vulnerability in the security education and training information system of Nanjin...

6.8AI score
Exploits0
CNVD
CNVD
added 2025/01/03 12:0 a.m.8 views

Information Leakage Vulnerability in Network Intelligence Analysis System of Stoneco (Nanjing) Information Technology Co.

Ltd. is an enterprise focusing on AI technology innovation, dedicated to promoting industry innovation through AI technology and building a customer-centric, business-scene-focused full-service system. There is an information leakage vulnerability in the network intelligence analysis system of...

6.6AI score
Exploits0
NVD
NVD
added 2024/07/14 2:15 a.m.27 views

CVE-2024-6730

A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...

6.5CVSS0.00427EPSS
Exploits0References4
CVE
CVE
added 2024/07/14 1:31 a.m.124 views

CVE-2024-6730

CVE-2024-6730 affects Nanjing Xingyuantu Technology SparkShop (versions up to 1.1.6). The issue is an unrestricted file upload via the /api/Common/uploadFile endpoint, caused by manipulation of the file argument. This vulnerability can be triggered remotely and has been publicly disclosed. Practi...

6.5CVSS6.5AI score0.00427EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/07/14 1:31 a.m.18 views

CVE-2024-6730 Nanjing Xingyuantu Technology SparkShop uploadFile unrestricted upload

A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...

6.5CVSS6.9AI score0.00427EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/07/14 1:31 a.m.39 views

CVE-2024-6730 Nanjing Xingyuantu Technology SparkShop uploadFile unrestricted upload

A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been rated as critical. This issue affects some unknown processing of the file /api/Common/uploadFile. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely...

6.5CVSS0.00427EPSS
Exploits0References4
CNVD
CNVD
added 2024/06/28 12:0 a.m.3 views

SQL Injection Vulnerability in Talent Recruitment Information Platform of Nanjing Kuchi Information Technology Co.

Ltd. is a software enterprise specializing in serving the personnel work of colleges and universities in China. There is a SQL injection vulnerability in the talent recruitment information platform of Nanjing Kuchi Information Technology Co., Ltd. that can be exploited by attackers to obtain...

7.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/08 4:56 a.m.10 views

bestay-express-jiefang-road.hotelsinnanjing.com Cross Site Scripting vulnerability OBB-3829676

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNVD
CNVD
added 2022/09/20 12:0 a.m.11 views

Nanjing Thing Orange Information Technology Co., Ltd. home recipe book APP has information leakage vulnerability

Home-Cooked Recipe Book APP is a food recipe software. Nanjing Thing Orange Information Technology Co., Ltd. has an information leakage vulnerability in Home Recipe Book APP, which can be exploited by attackers to obtain sensitive information...

2.1AI score
Exploits0Affected Software1
CNVD
CNVD
added 2022/05/13 12:0 a.m.107 views

SQL Injection Vulnerability in Physical Examination File Management System of Nanjing Zhongwei Xin Software Technology Co.

Ltd. is a national high-tech enterprise relying on independent research and development and technological innovation to form the core technology to carry out production and operation. There is a SQL injection vulnerability in the Medical Examination File Management System of Nanjing Zhongwei Xin...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/23 12:0 a.m.2 views

Weak Password Vulnerability in SDWAN Smart Gateway Application System of Nanjing Huazhida Network Technology Co.

Nanjing Huazhida Network Technology Co., Ltd. is a provider specializing in open network, SD-WAN solutions and technical services. A weak password vulnerability exists in the SDWAN Smart Gateway application system of Nanjing Huazhida Network Technology Co. Ltd, which can be exploited by attackers...

6.9AI score
Exploits0
CNVD
CNVD
added 2021/05/12 12:0 a.m.1 views

Nanjing Haoguan Technology Co., Ltd. building system there are logical flaws vulnerability

Nanjing Hao Guan Technology Co., Ltd. is mainly engaged in website construction, website optimization and promotion, computer machine and accessories sales, monitoring and security, audio and lighting, LED screen and other weak power engineering. Nanjing Hao Guan Technology Co., Ltd. station...

7AI score
Exploits0
CNVD
CNVD
added 2021/05/08 12:0 a.m.1 views

Command Execution Vulnerability in Nanjing Guanbang Network Technology Co.

Nanjing Guanbang Network Technology Co., Ltd. was founded in September 2004, is a private software enterprise which has passed the double-soft recognition of Jiangsu Province Information Industry Department. It is mainly engaged in the research and development and sales of education and teaching...

7AI score
Exploits0
CNVD
CNVD
added 2021/04/26 12:0 a.m.1 views

File Upload Vulnerability in School Training and Teaching Management System of Nanjing Suwen Software Technology Co.

Nanjing Suwen Software Technology Co., Ltd. was formerly known as the software studio established in 2001 in Gulou District, Nanjing, 2002, the studio began to involve in the performance management system, course selection management system, faculty management system development and design, in...

7AI score
Exploits0
CNVD
CNVD
added 2021/04/20 12:0 a.m.1 views

Command Execution Vulnerability in Intelligent Inspection System of Nanjing Sanshang Computer Software Development Co.

Intelligent inspection system is a comprehensive monitoring and scheduling management platform that combines GPS satellite positioning technology, GIS geographic information technology, GPRS/3G network communication technology, LBS base station positioning technology and Internet sensing technolo...

7.7AI score
Exploits0
CNVD
CNVD
added 2021/03/08 12:0 a.m.3 views

Unauthorized access vulnerability in the background management system of Nanjing Jiuzhe Software Technology Co.

Nanjing Jiuzhe Software Technology Co., Ltd. is a mobile Internet customized software service provider. There is an unauthorized access vulnerability in the back-end management system of Nanjing Jiuzhe Software Technology Co...

7.1AI score
Exploits0
Rows per page
Query Builder