11 matches found
Command execution vulnerability in CRMEB Min open source mall (CNVD-2021-34043)
CRMEB brand new a lightweight, high-performance open source e-commerce system . CRMEB Min open source mall there is a command execution vulnerability , an attacker can exploit the vulnerability to obtain server administrative privileges...
Command Execution Vulnerability in CRMEB Min Open Source Mall
CRMEB Min open source mall is a front and back end separation of open source e-commerce system . A command execution vulnerability exists in CRMEB Min Open Source Mall. An attacker can exploit this vulnerability to obtain server administrative privileges...
File upload vulnerability in duxcms
duxcms is a web content management based on HMVC rules and developed in PHP for SMEs, companies, news, individuals and other related industries. A file upload vulnerability exists in duxcms, which can be exploited by attackers to obtain server administrative privileges...
File upload vulnerability in zzcms framework
zzcms webmaster Merchants content management system, developed by the zzcms team, into the database optimization, content caching, AJAX and other technologies, so that the site's security, stability, load capacity to get a reliable protection. Open source, independent functional modules, to...
File Upload Vulnerability in daozicms V1.4
Daozicms Enterprise Building System is a cms enterprise building system developed by Thinkphp6.0.2+layui-v2.3.0+Mysql5.7. A file upload vulnerability exists in daozicms V1.4, which can be exploited by attackers to gain server administrative privileges...
File Containment Vulnerability in Destoon B2B Content Management System Backend (CNVD-2020-50908)
DESTOON® B2B Website Management System is an open source B2B e-commerce industry portal solution based on PHP+MySQL. A file inclusion vulnerability exists in the backend of the Destoon B2B content management system, which can be exploited by attackers to gain server administrative privileges...
DLL Hijacking Vulnerability in DeepSync EasyConnect Installer
Easyconnect is a mobile information technology office software for enterprises, this software allows the company's frequent travelers to use the company's intranet system and related applications outside the company's boundaries. A dll hijacking vulnerability exists in the EasyConnect installer,...
EyouCms has a logic flaw vulnerability
EyouCms is a free + open source enterprise content management system developed on the core of TP5.0 framework. EyouCms has a logic flaw vulnerability that can be exploited by attackers to obtain server administrative privileges...
Memory Corruption Vulnerability in WPS Office International Edition of Zhuhai Kingsoft Office Software Co.
Kingsoft WPS is Kingsoft Office Software office software, you can realize the office software commonly used text, forms, presentations and other functions. Zhuhai Kingsoft Office Software Co., Ltd. WPS Office international version of the existence of memory corruption vulnerability, attackers can...
Code execution vulnerability in imcat (CNVD-2020-32566)
Intimate Cat imcat is a general-purpose website system designed in PHP+MySQL architecture. A code execution vulnerability exists in imcat, which can be exploited by attackers to execute malicious code and gain administrative privileges on the server...
Command Execution Vulnerability in OpsManage
OpsManage is a management platform for performing device assets, code deployment, application deployment, and scheduled tasks. OpsManage suffers from a command execution vulnerability that can be exploited by an attacker to gain server administrative privileges...