17 matches found
EUVD-2024-51249
Malicious code in bioql PyPI...
EUVD-2024-51038
Malicious code in bioql PyPI...
EUVD-2024-51039
Malicious code in bioql PyPI...
CVE-2024-12990
A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic. This affects an unknown part of the file /user/admin-verify of the component Admin Verification Page. The manipulation of the argument nexturl with the input http://localhost/evil.html leads to open...
CVE-2024-12995 ruifang-tech Rebuild Project Tasks Section tasks cross site scripting
A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This affects an unknown part of the file /project/050-9000000000000001/tasks of the component Project Tasks Section. The manipulation of the argument description leads to cross site scripting. It is possible t...
CVE-2024-12995 ruifang-tech Rebuild Project Tasks Section tasks cross site scripting
A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This affects an unknown part of the file /project/050-9000000000000001/tasks of the component Project Tasks Section. The manipulation of the argument description leads to cross site scripting. It is possible t...
CVE-2024-12995
CVE-2024-12995 affects ruifang-tech Rebuild 3.8.6, specifically the Project Tasks Section/enterable file path /project/050-9000000000000001/tasks where manipulation of the description parameter enables cross-site scripting. The issue can be triggered remotely and the exploit has been disclosed pu...
PT-2024-17857 · Ruifang Tech · Ruifang-Tech Rebuild
Name of the Vulnerable Software and Affected Versions: ruifang-tech Rebuild version 3.8.6 Description: A vulnerability has been found in the Project Tasks Section component, affecting an unknown part of the file /project/050-9000000000000001/tasks. The manipulation of the description argument lea...
Ruifang-tech Rebuild 代码注入漏洞
Ruifang-tech Rebuild is a zero-code, open-source and free enterprise management system from China Ruifang Ruifang-tech. A code injection vulnerability exists in Ruifang-tech Rebuild version 3.8.6, which stems from a misuse of the parameter description that can lead to cross-site scripting...
CVE-2024-12990 ruifang-tech Rebuild Admin Verification Page admin-verify redirect
A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic. This affects an unknown part of the file /user/admin-verify of the component Admin Verification Page. The manipulation of the argument nexturl with the input http://localhost/evil.html leads to open...
CVE-2024-12990 ruifang-tech Rebuild Admin Verification Page admin-verify redirect
A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic. This affects an unknown part of the file /user/admin-verify of the component Admin Verification Page. The manipulation of the argument nexturl with the input http://localhost/evil.html leads to open...
CVE-2024-12990
The CVE-2024-12990 entry concerns ruifang-tech Rebuild 3.8.6, specifically the Admin Verification Page file /user/admin-verify. The vulnerability arises from manipulating the nexturl parameter (e.g., http://localhost/evil.html), causing an open redirect. It can be exploited remotely and has been ...
CVE-2024-12665
CVE-2024-12665 affects ruifang-tech Rebuild 3.8.5; the issue is a cross-site scripting vulnerability in an unknown function of the Task Comment Attachment Upload component. The manipulation enables remote execution of XSS and can be exploited remotely; the exploit has been disclosed publicly. The...
CVE-2024-12665 ruifang-tech Rebuild Task Comment Attachment Upload cross site scripting
A vulnerability, which was classified as problematic, was found in ruifang-tech Rebuild 3.8.5. Affected is an unknown function of the component Task Comment Attachment Upload. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-12664 ruifang-tech Rebuild Project Task Comment cross site scripting
A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comment Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
CVE-2024-12664 ruifang-tech Rebuild Project Task Comment cross site scripting
A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comment Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
PT-2024-17705 · Ruifang Tech · Ruifang-Tech Rebuild
Name of the Vulnerable Software and Affected Versions: ruifang-tech Rebuild version 3.8.5 Description: A problematic issue has been found in the Project Task Comment Handler component, leading to cross-site scripting. The attack can be initiated remotely. The exploit has been disclosed to the...