8 matches found
CVE-2024-50942
qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component /mapper/NoticeMapper.xml...
CVE-2024-50942
qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component /mapper/NoticeMapper.xml...
CVE-2024-50942
CVE-2024-50942 affects qiwen-file v1.4.0, with a SQL injection vulnerability in the /mapper/NoticeMapper.xml component. The issue is reported as high impact (CVSSv3.1: 9.8, Confidentiality/Integrity/Availability = HIGH) and exploitable over NETWORK with no user interaction. Documentation consiste...
CVE-2024-50942
qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component /mapper/NoticeMapper.xml...
PT-2024-34464 · Unknown · Qiwen-File
Name of the Vulnerable Software and Affected Versions: qiwen-file version 1.4.0 Description: The issue is related to a SQL injection vulnerability. It affects the component /mapper/NoticeMapper.xml. Recommendations: For qiwen-file version 1.4.0, consider restricting access to the...
CVE-2024-50942
qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component /mapper/NoticeMapper.xml...
qiwen-file 安全漏洞
qiwen-file qiwen.com is a distributed file system from qiwen. It aims to provide users and enterprises with a simple and convenient file storage solution that can manage files with a perfect directory structure system. A security vulnerability exists in qiwen-file v1.4.0, which originates from a...
Qiwen Netdisk 跨站脚本漏洞
Qiwen Netdisk is a simple and convenient file storage solution netdisk from Qiwen, a Chinese company. A cross-site scripting vulnerability exists in Qiwen Netdisk version 1.4.0 and earlier, which stems from a stored cross-site scripting XSS vulnerability in the file renaming feature in qiwen-file...