File upload vulnerability exists in Heartland OA 2021 Autumn Solid Edition (CNVD-2021-89120)

Mindtone OA is an oa office tool equipped with AI artificial intelligence. A file upload vulnerability exists in Heartland OA 2021 Autumn Edition, which can be exploited by attackers to gain control of the server...

File Upload Vulnerability in Heartland OA 2021 Autumn Solid Edition (CNVD-2021-89119)

Mindtone OA is an oa office tool equipped with AI artificial intelligence. A file upload vulnerability exists in Heartland OA 2021 Autumn Edition, which can be exploited by attackers to gain control of the server...

Design/Logic Flaw

The Kingsoft Clip Office Tool aka cn.wps.clip application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6692

The CVE-2014-6692 issue affects the Android app Kingsoft Clip (Office Tool) cn.wps.clip, version 1.5.1. The underlying flaw is that the app does not verify X.509 certificates from SSL servers, enabling a man‑in‑the‑middle attacker to spoof servers and potentially exfiltrate sensitive information ...