242 matches found
CVE-2024-21899
An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578...
EsafeNet CDG 安全漏洞
EsafeNet CDG is a document security management system from EsafeNet. A security vulnerability exists in EsafeNet CDG version V5, which originates from the parameter flowId in the file /sdTodoDetail.jsp that can lead to SQL injection...
CVE-2025-21537
CVE-2025-21537 affects Oracle PeopleSoft, specifically the Cash Management component of PeopleSoft Enterprise FIN Cash Management, version 9.2. The vulnerability arises from weaknesses in the authorization mechanism of Cash Management that can be exploited remotely over HTTP by a low-privilege at...
CISA: OBP Training Fact Sheet
System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...
Intelligent Security System SecurOS Enterprise 11 Unquoted Service Path
Exploit Title: Intelligent Security System SecurOS Enterprise v11 - Unquoted Service Path Date: 2024-11-25 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] t.me/Ci3c0 Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL MiRROR-H: https://mirror-h.org/search/hacker/49626/ Vend...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in EsafeNet CDG, which stems from an incorrect manipulation of the parameter fileId that can lead to sql injection...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet China. A SQL injection vulnerability exists in ESAFENET CDG. An attacker can exploit this vulnerability to perform SQL injection attacks...
ESAFENET CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in ESAFENET CDG, which stems from an incorrect manipulation of the parameter id that can lead to SQL injection...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. EsafeNet CDG suffers from a SQL injection vulnerability, which stems from incorrect manipulation of the parameters id and frontId that can lead to sql injection...
Arbitrary File Download Vulnerability in Terminal Advanced Threat Detection and Response System of Beijing Qixingchen Information Security Technology Co.
Terminal advanced threat detection and response system is to help quickly build a new generation of terminal security protection system. Beijing Qixingchen Information Security Technology Co., Ltd Terminal Advanced Threat Detection and Response System has an arbitrary file download vulnerability,...
Panasonic WV-S2231L Camera Use of Hard-coded Credentials (CVE-2020-29193)
Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa which is just the asdf keyboard row in reverse order. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
SQL injection vulnerability in the electronic document security management system of Beijing Yisetong Technology Development Co., Ltd (CNVD-2024-36673)
Yisetong electronic document security management system is an electronic document security protection software, the system utilizes the driver layer transparent encryption technology, through the encryption protection of electronic documents, to prevent internal employees from leaking and externa...
SQL Injection Vulnerability in Yisaitong Electronic Document Security Management System of Beijing Yisaitong Technology Development Limited Liability Company (CNVD-2024-36535)
Beijing Yisaitong Technology Development Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A SQL injection vulnerability exists in the Yisetong Electronic Document Security Management System of Beijing Yisetong Technology Development C...
SQL Injection Vulnerability in Yisetong Electronic Document Security Management System of Beijing Yisetong Technology Development Co., Ltd (CNVD-2024-34821)
Yisetong electronic document security management system is an electronic document security protection software, the system utilizes the driver layer transparent encryption technology, through the encryption protection of electronic documents, to prevent internal employees from leaking and externa...
BELL-CVE-2024-38557
Bulletin has no description...
CGA-PG3H-88PR-X67H
Bulletin has no description...
Peplink Smart Reader web interface /cgi-bin/debug_dump.cgi information disclosure vulnerability
Talos Vulnerability Report TALOS-2023-1863 Peplink Smart Reader web interface /cgi-bin/debugdump.cgi information disclosure vulnerability April 17, 2024 CVE Number CVE-2023-43491 SUMMARY An information disclosure vulnerability exists in the web interface /cgi-bin/debugdump.cgi functionality of...
CVE-2023-36483
Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...
CVE-2023-36483 MAS (a Carrier brand) MASmobile Classic Authorization Bypass
Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...
CVE-2023-36483 MAS (a Carrier brand) MASmobile Classic Authorization Bypass
Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...