Summarization Functions 操作系统命令注入漏洞

Summarization Functions is an intelligent text summarization server developed by Braffolk’s individual developer. Versions of Summarization Functions prior to 0.1.5 had a vulnerability related to operating system command injection. This vulnerability stemmed from improper handling of the command...

orion-ops 安全漏洞

orion-ops is a one-stop automated O&M and automated deployment platform by the individual developer, Jiahang Li. A security vulnerability exists in orion-ops, which stems from the incorrect manipulation of the parameter ID in the file UserController.java, which could lead to improper authorizatio...

EUVD-2019-17783

Malware in sbrugna...

EUVD-2018-10343

Malware in sbrugna...

EUVD-2021-28355

Malicious code in bioql PyPI...

PT-2025-39966

Name of the Vulnerable Software and Affected Versions PAD CMS affected versions not specified Description The software improperly initializes a parameter used during the password recovery process. This allows an attacker to change the password for any user who has not utilized the password reset...

i-Educar 安全漏洞

i-Educar is a free educational software from Portábilis Open Source. A security vulnerability exists in i-Educar version 2.10 and earlier, which stems from a SQL injection attack due to a mishandling of the parameter ID in the file /module/FormulaMedia/view...

CampCodes Courier Management System 注入漏洞

CampCodes Courier Management System is a courier management system from CampCodes Philippines. An injection vulnerability exists in CampCodes Courier Management System version 1.0, which originates from a SQL injection due to a mishandling of the parameter ID in the file /manageuser.php...

Code-Projects Online Ordering System 代码问题漏洞

Online Ordering System is an online ordering system. A file upload vulnerability exists in Online Ordering System that stems from a lack of valid validation of uploaded files by the parameter image in the file /admin/editproduct.php. No details of the vulnerability are available at this time...

Code-Projects Laundry System 代码注入漏洞

Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Type in the file /data/edittype.php, which can be exploited by an attacker to execute arbitrary...

CVE-2020-6948

A remote code execution issue was discovered in HashBrown CMS through 1.3.3. Server/Entity/Deployer/GitDeployer.js has a Service.AppService.exec call that mishandles the URL, repository, username, and password...

CVE-2019-7587

Bo-blog Wind through 1.6.0-r allows SQL Injection via the admin.php/comments/batchdel/ comID parameter because this parameter is mishandled in the mode/admin.mode.php delBlockedBatch function...

D-Link DI-8100 Stack Buffer Overflow Vulnerability

The D-Link DI-8100 is a network device designed to provide network connectivity and management capabilities. The D-Link DI-8100 suffers from a stack buffer overflow vulnerability that stems from insufficient handling of the parameters defmax/deftime/deftcpmax/deftcptime/defudpmax/defudptime/defic...

mayi 代码问题漏洞

mayi is shuiyueju open source a performance management system . mayi 1.3.9 and previous versions of the code problem vulnerability , the vulnerability stems from the file app/tools/controller/File.php function Upload on the parameter File mishandling , may lead to arbitrary file upload...

SourceCodester Online ID Generator System 安全漏洞

SourceCodester Online ID Generator System is an online identity generator system from SourceCodester open source. A security vulnerability exists in SourceCodester Online ID Generator System version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter template...

My-Blog-layui 代码问题漏洞

My-Blog-layui is a blog system developed by ZHENFENG13. A code issue exists in My-Blog-layui version 1.0, the vulnerability stems from the wrong operation of the parameter File in the file /admin/upload/authorImg/, which leads to the upload of arbitrary files...

Code-Projects Online Restaurant Management System 安全漏洞

Code-Projects Online Restaurant Management System is a Code-Projects open source online restaurant management system. A security vulnerability exists in Code-Projects Online Restaurant Management System version 1.0, which stems from the mishandling of the parameter last in the /admin/membersave.p...

iboot 安全漏洞

iboot is a general-purpose IoT gateway, industrial IoT gateway system by iteaj individual developer. A security vulnerability exists in iboot version 1.1.3, which stems from the mishandling of the parameter File in the file upload component /common/upload/batch, which could lead to a cross-site...

Control iD RHiD 安全漏洞

Control iD RHiD is a complete system from Control iD that allows point computing in the cloud. A security vulnerability exists in Control iD RHiD version 25.2.25.0, which stems from an incorrect manipulation of the parameter nsr can lead to improper control of resource identifiers...

UTCMS 安全漏洞

UTCMS is a content management system built on the UT framework by the individual developer of visualtool. A security vulnerability exists in UTCMS V9, which stems from mishandling of parameters, leading to SQL injection...