Lucene search
K

9 matches found

Nuclei
Nuclei
added 16 hours ago34 views

Smart s200 Management Platform v.S200 - SQL Injection

SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a local attacker to obtain sensitive information and escalate privileges via the /importexport.php component. id: CVE-2024-27718 info: name: Smart s200 Management Platform v.S200 - SQL Injection author:...

7.8CVSS6AI score0.01101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.4 views

CVE-2024-27718

SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a local attacker to obtain sensitive information and escalate privileges via the /importexport.php component...

7.8CVSS7.5AI score0.01101EPSS
Exploits0References1
NVD
NVD
added 2024/05/15 8:15 p.m.11 views

CVE-2024-4904

A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be initiated...

6.5CVSS6.4AI score0.0062EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/15 7:31 p.m.11 views

CVE-2024-4904 Byzoro Smart S200 Management Platform userattestation.php unrestricted upload

A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be initiated...

6.5CVSS6.7AI score0.0062EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/15 7:31 p.m.19 views

CVE-2024-4904 Byzoro Smart S200 Management Platform userattestation.php unrestricted upload

A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted upload. The attack may be initiated...

6.5CVSS6.6AI score0.0062EPSS
Exploits0References4
CVE
CVE
added 2024/05/15 7:31 p.m.38 views

CVE-2024-4904

The CVE-2024-4904 entry concerns Byzoro Smart S200 Management Platform (up to 20240507). The issue is triggered by improper handling of the web_img argument in the file path /useratte/userattestation.php, enabling unrestricted file upload. This could potentially allow remote attackers to upload a...

6.5CVSS6.7AI score0.0062EPSS
Exploits0References4
CVE
CVE
added 2024/03/04 12:0 a.m.102 views

CVE-2024-27718

The connected Nuclei template confirms a SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200, exploitable via the /importexport.php component. The root cause is an SQL injection in that endpoint, allowing a local attacker to obtain sensitive information and escala...

7.8CVSS7.3AI score0.01101EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/04 12:0 a.m.4 views

PT-2024-22009 · Baizhuo Network · Baizhuo Network Smart S200 Management Platform

Name of the Vulnerable Software and Affected Versions: Baizhuo Network Smart s200 Management Platform version S200 Description: The issue allows a local attacker to obtain sensitive information and escalate privileges. This is achieved via the "/importexport.php" component, which is vulnerable to...

7.8CVSS7.3AI score0.01101EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/04 12:0 a.m.20 views

CVE-2024-27718

SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a local attacker to obtain sensitive information and escalate privileges via the /importexport.php component...

7.4AI score0.01101EPSS
Exploits0References1
Rows per page
Query Builder