181 matches found
SQL Injection Vulnerability in the Type Parameter of NoticeList.aspx Page of Wave e-Procurement Platform
Wave e-procurement platform is a proprietary e-commerce platform for enterprises built using cloud computing and e-commerce technology. A SQL injection vulnerability exists in the Type parameter of the NoticeList.aspx page of the Wave e-Procurement Platform, which can be exploited by an attacker ...
Threat Outbreak Alert RuleID24353: Email Messages Distributing Malicious Software on August 18, 2016
Medium Alert ID: 48517 First Published: 2016 August 18 14:25 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID24353 may contain the following files: Name |...
Network up signal associated with the electronic procurement system /Channel/Company_Show. aspx file ID parameter SQL injection vulnerability
No description provided by source...
Beijing network up letter from Unicom to use the electronic procurement system more than a dozen of SQL injection
No description provided by source...
Arbitrary File Containment Vulnerability in e-Procurement Platform of Beijing Yizaitong Information Technology Co.
Beijing Yizaitong Information Technology Co., Ltd. e-procurement platform is a system for online procurement transactions. A file inclusion vulnerability exists in the e-procurement platform of Beijing Yizaitong Information Technology Co., Ltd, which can be exploited by attackers to download...
Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise SCM Component
Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, of which PeopleSoft Enterprise SCM is a supply chain management component. A security vulnerability exists in the Services Procurement subcomponent of the PeopleSoft Enterprise SCM...
CVE-2016-0680
Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement...
CVE-2016-0680
Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement...
Design/Logic Flaw
Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement...
CVE-2016-0680
Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement...
CVE-2016-0680
Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement...
CVE-2016-0680
CVE-2016-0680 affects Oracle PeopleSoft Products 9.1 and 9.2, specifically the Services Procurement subcomponent of the PeopleSoft Enterprise SCM suite. A security vulnerability exists that can be exploited by a remote authenticated user to read, update, insert, or delete data, thereby compromisi...
procurement.ecmwf.int XSS vulnerability
Vulnerable URL: https://procurement.ecmwf.int/ecmwf/supplier.nsf/frmopportunity?openFormid=CONTRACT-A7GL-BHMIDMid=OPP-HIS-A7LK-77OXX3id=id=ORG-9UGG-2MWUEV=supplierhome" Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 21:54 GMT Vulnerability...
一采通电子采购系统任意文件上传
No description provided by source...
Threat Outbreak Alert RuleID21314: Email Messages Distributing Malicious Software on February 24, 2016
Medium Alert ID: 43730 First Published: 2016 February 24 15:17 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID21314 may contain the following files: Name |...
1caitong 电子采购系统 InviteFee_Edit.asp SQL注入漏洞
No description provided by source...
Threat Outbreak Alert RuleID20329: Email Messages Distributing Malicious Software on January 5, 2016
Medium Alert ID: 42892 First Published: 2016 January 5 14:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20329 may contain the following files: Name |...
Threat Outbreak Alert RuleID15645: Email Messages Distributing Malicious Software on June 1, 2015
Medium Alert ID: 39152 First Published: 2015 June 2 14:09 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID15645 may contain the following files: Name | Size...
SQL Injection Vulnerability in indexNum Parameter of E-procurement System of Yizaitong
Yicai Tong has been committed to enterprise procurement informationization and procurement consulting, providing in-depth solutions in the direction of procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain, and industrialize...
SQL Injection Vulnerability in id Parameter of E-procurement System of Yizitong
Yicai Tong has been committed to enterprise procurement informationization and procurement consulting, providing in-depth solutions in the direction of procurement management, group intensive procurement management, lean supply chain, strategic procurement, project supply chain, and industrialize...