43 matches found
EUVD-2020-29215
Malware in sbrugna...
EUVD-2020-29214
Malware in sbrugna...
EUVD-2023-43553
Malicious code in bioql PyPI...
EUVD-2023-31327
Malicious code in bioql PyPI...
CVE-2024-30845
Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters...
CVE-2023-39853
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...
CVE-2020-8347
A reflective cross-site scripting XSS vulnerability was reported in Lenovo Enterprise Network Disk prior to version 6.1 patch 6 hotfix 4 that could allow execution of code in an authenticated user's browser if a crafted url is visited, possibly through phishing...
CVE-2020-8348
A DOM-based cross-site scripting XSS vulnerability was reported in Lenovo Enterprise Network Disk prior to version 6.1 patch 6 hotfix 4 that could allow execution of code in an authenticated user's current browser session if a crafted url is visited, possibly through phishing...
CVE-2024-30845
Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters...
Rainbow external link network disk 安全漏洞
Rainbow external link network disk is a PHP network disk and external link sharing program by netcccyun's personal developer. A security vulnerability exists in Rainbow external link network disk version v.5.5, which stems from a cross-site scripting XSS vulnerability. A remote attacker can execu...
CVE-2024-30845
Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters...
CVE-2024-30845
Rainbow external link network disk v.5.5 is affected by a Cross Site Scripting vulnerability. The issue arises in the validation component of input parameters and can allow a remote attacker to execute arbitrary code. Public documents consistently describe the vulnerability and affected version b...
CVE-2024-30845
Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters...
Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 : amanda vulnerability (USN-6614-1)
The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6614-1 advisory. It was discovered that amanda did not properly check certain arguments. A local unprivileged attacker could possibly use this issu...
CVE-2023-39853
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...
CVE-2023-39853
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...
Sql injection
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...
CVE-2023-39853
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...
DzzOffice SQL Injection Vulnerability
DzzOffice is a platform that provides online collaborative office suite functionality from the American company Big Desk DzzOffice. The platform can be used to provide features such as online documents, forms, web drives, presentations, and more. A SQL injection vulnerability exists in DzzOffice...
CVE-2023-39853
CVE-2023-39853 affects Dzzoffice 2.01. A SQL injection vulnerability exists in the Network Disk backend module, exploitable via the doobj and doevent parameters to leak or access sensitive information. The NVD/CNA metrics indicate network access with low attack complexity and minimal privileges r...