12 matches found
Unauthorized Access Vulnerability in QSI Purchase System PURCHASE
Purchase is an application for office purchasing. An unauthorized access vulnerability exists in Qixing Procurement System Purchase, which can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Us***_Se***.aspx Page of Qixing Procurement System
The QI Procurement System is the system used for material procurement. An SQL injection vulnerability exists in the UsSe.aspx page of the Qixing Procurement System, which can be exploited by an attacker to obtain sensitive information from the database...
SQL Injection Vulnerability in Us***_Li***.aspx Page of Qixing Procurement System
The QI Procurement System is the system used for material procurement. An SQL injection vulnerability exists in the UsLi.aspx page of the Qixing Procurement System, which can be exploited by an attacker to obtain sensitive information from the database...
File Upload Vulnerability in Kaixin Procurement System
Qixing Purchasing System is a system for material purchasing and management, which is developed using ASP.NET language. A file upload vulnerability exists in the Qixing Procurement System. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
Document Uploading Vulnerability in Beijing Yizaitong E-Procurement System
Beijing Yizaitong Information Technology Co., Ltd. has been committed to enterprise procurement information technology, procurement consulting field, oriented to procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain,...
SQL Injection Vulnerability in Beijing Yizaitong E-procurement System
Beijing Yizaitong Information Technology Co., Ltd. has been committed to enterprise procurement information technology, procurement consulting field, oriented to procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain,...
Beijing Yizaitong E-procurement System Has Information Leakage Vulnerabilities
Beijing Yizaitong Information Technology Co., Ltd. has been committed to enterprise procurement information technology, procurement consulting field, oriented to procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain,...
Beijing network up letter from Unicom to use the electronic procurement system more than a dozen of SQL injection
No description provided by source...
一采通电子采购系统任意文件上传
No description provided by source...
SQL Injection Vulnerability in id Parameter of E-procurement System of Yizitong
Yicai Tong has been committed to enterprise procurement informationization and procurement consulting, providing in-depth solutions in the direction of procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain, and industrialize...
SQL Injection Vulnerability in indexNum Parameter of E-procurement System of Yizaitong
Yicai Tong has been committed to enterprise procurement informationization and procurement consulting, providing in-depth solutions in the direction of procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain, and industrialize...
一采通电子采购系统多处SQL注入漏洞#2
简要描述: 一采通电子采购系统多处SQL注入漏洞2 详细说明: google:inurl:companycglist.aspx?ComId= 1 漏洞存在于 /Products/CategoryMSelect.aspx,参数Name 例如 http://eps.umgg.com.cn/Products/CategoryMSelect.aspx?Name=树脂磨盘 2 漏洞存在于 /RAT/Product/HistoryPrice.aspx,参数kw 例如 http://eps.umgg.com.cn/RAT/Product/HistoryPrice.aspx?kw=1 3 漏洞存在于...