CVE-2026-1412

A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. The impacted element is an unknown function of the file /fort/audit/getclipimg of the component HTTP POST Request Handler. Such manipulation of the argument frame/dirno leads to command...

Command Execution Vulnerability in SecFox Operations and Maintenance Security Management and Audit System of Chianxin Technology Group Co.

SecFox O&M Security Management and Audit System is an O&M security management solution that integrates authentication, account management, privilege control, and O&M audit, providing unified O&M authentication, fine-grained privilege control, real-time supervision, and after-the-fact traceability...

CVE-2023-39964 1Panel O&M management panel has a background arbitrary file reading vulnerability

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the api/v1/file.go file, there is a function called LoadFromFile, which directly reads the...

CVE-2023-39964 1Panel O&M management panel has a background arbitrary file reading vulnerability

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the api/v1/file.go file, there is a function called LoadFromFile, which directly reads the...

Command Execution Vulnerability in Golden Power Grid's Trusted O&M Management System

Golden Grid AnTrust O&M Management System provides a professional "human-machine" interactive O&M platform and professional "human-machine" delivery solutions. There is a command execution vulnerability in the Golden Grid Secure O&M Management System, which can be exploited by attackers to execut...

Weak Password Vulnerability in Tian Yue's O&M Security Gateway (CNVD-2021-58618)

Tian Yue O&M Security Gateway Cloud Fortress Machine is a compliance control system for controlling and auditing user O&M operations in business environment. There is a weak password vulnerability in Tian Yue Operations and Maintenance Security Gateway, which can be exploited by attackers to obta...

Command Execution Vulnerability in the Operation and Maintenance Audit System of Beijing COSCO Kirin Technology Co.

Beijing COSCO KyLin Technology Co., Ltd. is a software development company mainly focusing on R&D. The main products of the company are COSCO KyLin Barrier Machine, KyLin SSL VPN, KyLin Dynamic Password System, KyLin Cloud Desktop and so on. A command execution vulnerability exists in the operati...

Weak Password Vulnerability in Tianyue Operations and Maintenance Security Gateway

Tianyue O&M Security Gateway, commonly known as Bastion Machine, is able to comprehensively track, control, record and playback the maintenance process of O&M personnel; it supports fine-grained configuration of O&M personnel's access privileges, blocking irregularities and overstepping of rights...

Unfixed XSS vulnerability at www.h-o-m-e-p-a-g-e.info

Security researcher T-Ping, has submitted on 18/09/2007 a cross-site-scripting XSS vulnerability affecting www.h-o-m-e-p-a-g-e.info, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 22/09/2007. It is...