15 matches found
CVE-2024-1005
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
CVE-2024-1006
A vulnerability was found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This issue affects some unknown processing of the file application/index/common.php of the component Cookie Handler. The manipulation of the argument NodUserId/NodUserToken leads to improper...
CVE-2024-1006
A vulnerability was found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This issue affects some unknown processing of the file application/index/common.php of the component Cookie Handler. The manipulation of the argument NodUserId/NodUserToken leads to improper...
CVE-2024-1006
A vulnerability was found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This issue affects some unknown processing of the file application/index/common.php of the component Cookie Handler. The manipulation of the argument NodUserId/NodUserToken leads to improper...
Authentication flaw
A vulnerability was found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This issue affects some unknown processing of the file application/index/common.php of the component Cookie Handler. The manipulation of the argument NodUserId/NodUserToken leads to improper...
CVE-2024-1006
The CVE-2024-1006 issue affects Shanxi Diankeyun Technology NODERP (up to 6.0.2), specifically the Cookie Handler component in application/index/common.php. The vulnerability arises from manipulation of Nod_User_Id/Nod_User_Token, leading to improper authentication. It is exploitable over the net...
CVE-2024-1006 Shanxi Diankeyun Technology NODERP Cookie common.php improper authentication
A vulnerability was found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This issue affects some unknown processing of the file application/index/common.php of the component Cookie Handler. The manipulation of the argument NodUserId/NodUserToken leads to improper...
CVE-2024-1005
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
CVE-2024-1005
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
Information disclosure
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
CVE-2024-1005
CVE-2024-1005 affects Shanxi Diankeyun Technology NODERP up to 6.0.2. The vulnerability targets an issue in the /runtime/log component, enabling access to files or directories. It supports remote attack, with public disclosure of the exploit. Multiple sources corroborate the affected product/vers...
CVE-2024-1005 Shanxi Diankeyun Technology NODERP log file access
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
CVE-2024-1005 Shanxi Diankeyun Technology NODERP log file access
A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified as critical. This vulnerability affects unknown code of the file /runtime/log. The manipulation leads to files or directories accessible. The attack can be initiated remotely. The exploit has been...
PT-2024-15997 · Shanxi Diankeyun Technology · Noderp
Name of the Vulnerable Software and Affected Versions: Shanxi Diankeyun Technology NODERP versions up to 6.0.2 Description: A critical issue has been found in the software, affecting unknown code of the file /runtime/log. This allows for files or directories to be made accessible. The attack can ...
Shanxi Diankeyun Technology NODERP Authorization Issue Vulnerability
Shanxi Diankeyun Technology NODERP is an ERP system from Shanxi Diankeyun Technology. An authorization issue vulnerability exists in Shanxi Diankeyun Technology NODERP version 6.0.2, which stems from the possibility that the parameter NodUserId/NodUserToken in the file application/index/common.ph...