EUVD-2022-0881

Malicious code in bioql PyPI...

Command Execution Vulnerability in Tianqing Hanma USG Firewall of Beijing Qixing Information Security Technology Co.

Tianqing Hanma USG Firewall is a new firewall series product launched by Qixing. There is a command execution vulnerability in Tianqing Hanma USG Firewall, which can be exploited by attackers to obtain server control privileges...

File Upload Vulnerability in DSS of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is a video-centered intelligent IOT solution provider and operation service provider. A file upload vulnerability exists in the DSS of Zhejiang Dahua Technology Co. Ltd, which can be exploited by an attacker to gain server control privileges...

CVE-2021-44892

A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...

CVE-2021-44892

A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...

Remote code execution

A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...

CVE-2021-44892

A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...

Damon database management system has a file upload vulnerability

Damon Database Management System is a centralized management platform to monitor, manage and maintain DM databases through a web interface. There is a file upload vulnerability in Damon Database Management System, which can be exploited by attackers to obtain server control privileges...

Command Execution Vulnerability in Patrol Cloud Light Forum System (CNVD-2022-01416)

Cruise cloud light forum system contains forums, Q&A module, using JAVA MYSQL architecture. A command execution vulnerability exists in the Patrol Cloud Light Forum system, which can be exploited by an attacker to gain server control privileges...

File Upload Vulnerability in Enterprise Mobile Management Platform (Leagsoft emm) of Shenzhen Leagsoft Technology Co.

Enterprise Mobility Management Platform Leagsoft emm is a full lifecycle security management platform for mobile applications, including device management, application management, user management, security policy management and other related functions. A file upload vulnerability exists in Leagso...

File Upload Vulnerability in NetSign Signature Verification Server of Dongfang Tongweb Middleware of Beijing Xin'an Century Technology Co.

Ltd. provides signature verification server NetSign to provide digital signature services based on digital certificates for various types of electronic information data, electronic documents, etc., and verify the authenticity and validity of signatures on signed data; support user certificate...

File Upload Vulnerability in IPTV Business Management System of Shenzhen Zichen Video Technology Co.

Ltd. is a wholly-owned subsidiary of Beijing Zichen Pegasus Technology Co., Ltd. and is committed to providing a new generation of 4K ultra-high-definition audio-visual edge computing and so on for hotels, hospitals, communities, apartments, schools and enterprises and institutions. There is a fi...

File Upload Vulnerability in Collaborative Office Platform of Microsoft Technology (Hangzhou) Co.

Microsoft Technology Hangzhou Co., Ltd. is a professional ECM Collaboration Management Software and BPM Business Process Management Software R & D and solution provider. A file upload vulnerability exists in the Collaboration Office platform of Microhome Software Technology Hangzhou Co., Ltd, whi...

Shaanxi Silicon Peak Network Technology Co., Ltd. website building system has file upload vulnerability

Shaanxi Silicon Peak Network Technology Co., Ltd. was founded in 2007 is a "website design, software development, microblogging, Internet marketing, e-commerce" and other integrated information technology services in one of the high-end brand IT organizations. Shaanxi Silicon Peak Network...

Arbitrary File Write Vulnerability in Panavision OA E-office

Panmicro OA E-office system is a professional collaborative OA software for small and medium-sized organizations, a leading brand in the field of domestic collaborative OA office, dedicated to providing professional OA office system, mobile OA applications and other collaborative OA overall...

File Upload Vulnerability in Fisheye CMS (CNVD-2021-51875)

FishLeap CMS is a content management system specifically geared towards enterprise applications. A file upload vulnerability exists in Fishy CMS, which can be exploited by an attacker to write a malicious file to gain server control privileges...

Command execution vulnerability exists in ThinkPHP (CNVD-2021-50148)

ThinkPHP is developed and maintained by the Shanghai Top Thinking company MVC structure of the open-source PHP framework. ThinkPHP has a command execution vulnerability that can be exploited by attackers to gain server control privileges...

Command Execution Vulnerability in Xiaodu Route AV Version

Xiaodu Router is a smart router product launched by Baidu, which can transmit cloud data at will and support remote download of audio and video resources. Xiaodu Router AV version has a command execution vulnerability, which can be exploited by attackers to obtain server control privileges...

Shanghai Top Thinking Information Technology Co., Ltd ThinkPHP suffers from a deserialization vulnerability (CNVD-2021-49592)

ThinkPHP is developed and maintained by the Shanghai Top Thinking company MVC structure of the open-source PHP framework. ThinkPHP has a deserialization vulnerability that can be exploited by attackers to gain server control privileges...

Shanghai Topmind Information Technology Co., Ltd. ThinkPHP suffers from a deserialization vulnerability

ThinkPHP is developed and maintained by the Shanghai Top Thinking company MVC structure of the open-source PHP framework. ThinkPHP has a deserialization vulnerability that can be exploited by attackers to gain server control privileges...