Lucene search
+L

36 matches found

Cvelist
Cvelist
added 2024/11/15 12:0 a.m.28 views

CVE-2024-44759

An arbitrary file download vulnerability in the component /Doc/DownloadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request...

0.00421EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/15 12:0 a.m.24 views

CVE-2024-44758

An arbitrary file upload vulnerability in the component /Production/UploadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to execute arbitrary code via uploading crafted files...

0.00681EPSS
Exploits0References2
CVE
CVE
added 2024/11/15 12:0 a.m.57 views

CVE-2024-44759

CVE-2024-44759 affects NUS-M9 ERP Management Software v3.0.0. The vulnerability resides in the component /Doc/DownloadFile, enabling an arbitrary file download via a crafted interface request and potentially exposing sensitive information. The advisory/entries consistently describe this as a file...

7.5CVSS6.6AI score0.00421EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/11/15 12:0 a.m.53 views

CVE-2024-44758

CVE-2024-44758 describes an arbitrary file upload vulnerability in the component /Production/UploadFile of NUS-M9 ERP Management Software v3.0.0 . Multiple sources (NVD, Red Hat, CVE databases) identify that uploading crafted files can lead to arbitrary code execution. The CVSS v3.1 vector indica...

9.8CVSS8.1AI score0.00681EPSS
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2023/11/10 10:28 p.m.11 views

nus-systems.de Improper Access Control vulnerability OBB-3776941

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/31 7:0 p.m.11 views

gifts.yale-nus.edu.sg Cross Site Scripting vulnerability OBB-1471151

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/08/07 9:44 p.m.12 views

nus.org.uk XSS vulnerability

Vulnerable URL: http://www.nus.org.uk/en/advice/?news-search=%22%3E%3Cimg%20src=%22x%22%20onerror=%22alert%27openbugbounty%27%22;%3E&news-search-submit;=Search Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 23:13 GMT Vulnerability type:| XSS...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2016/03/13 12:0 a.m.37 views

南大之星信息发布系统 search_video.asp等6处 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

nus newssystem 1.02 - (id) SQL Injection Vulnerability

No description provided by source. .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. NUs Newssystem 1.02 id SQL Injection Vulnerability .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. + Autor: n3w7u + Page: http://www.internet-works.de/home.html +...

7.1AI score
Exploits0
NVD
NVD
added 2011/11/23 1:55 a.m.14 views

CVE-2010-5060

SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.02093EPSS
Exploits1References5
Prion
Prion
added 2011/11/23 1:55 a.m.12 views

Sql injection

SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.02093EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2011/11/23 1:0 a.m.44 views

CVE-2010-5060

Summary: CVE-2010-5060 is a SQL injection vulnerability in the Nus.php file of NUs Newssystem 1.02 , exploitable via the id parameter to allow remote attackers to execute arbitrary SQL commands. The fault is a database-related injection in the affected component, leading to potential partial to f...

7.5CVSS8.7AI score0.02093EPSS
Exploits1References5Affected Software1
exploitpack
exploitpack
added 2010/03/09 12:0 a.m.22 views

nus newssystem 1.02 - id SQL Injection

nus newssystem 1.02 - id SQL Injection .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. NUs Newssystem 1.02 id SQL Injection Vulnerability .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. + Autor: n3w7u + Page: http://www.internet-works.de/home.html +...

Exploits0
Packet Storm
Packet Storm
added 2010/03/09 12:0 a.m.31 views

NUs Newssystem 1.02 SQL Injection

.-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. NUs Newssystem 1.02 id SQL Injection Vulnerability .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. + Autor: n3w7u + Page: http://www.internet-works.de/home.html + Source:...

0.2AI score
Exploits0
0day.today
0day.today
added 2010/03/09 12:0 a.m.39 views

NUs Newssystem v1.02 (id) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================== NUs Newssystem v1.02 id SQL Injection Vulnerability ===================================================== .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. + Autor:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/03/09 12:0 a.m.44 views

nus newssystem 1.02 - 'id' SQL Injection

.-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. NUs Newssystem 1.02 id SQL Injection Vulnerability .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-. + Autor: n3w7u + Page: http://www.internet-works.de/home.html + Vulnerabilities SQL Injection + Language: PH...

7.4AI score
Exploits0
Rows per page
Query Builder