73 matches found
EUVD-2022-35272
Malicious code in bioql PyPI...
EUVD-2022-52337
Malicious code in bioql PyPI...
EUVD-2022-35273
Malicious code in bioql PyPI...
EUVD-2022-35271
Malicious code in bioql PyPI...
EUVD-2022-52338
Malicious code in bioql PyPI...
EUVD-2024-17439
Malicious code in bioql PyPI...
EUVD-2022-46360
Malicious code in bioql PyPI...
CVE-2024-1705
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
CVE-2022-30058
Shopwind =v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php...
CVE-2022-30059
Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...
CVE-2022-43321
Shopwind v3.4.3 was discovered to contain a reflected cross-site scripting XSS vulnerability in the component /common/library/Page.php...
CVE-2022-30453
ShopWind = 3.4.2 has a RCE vulnerability in Database.php...
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
CVE-2022-30057
Shopwind =v3.4.2 was discovered to contain a stored cross-site scripting XSS vulnerability...
CVE-2024-1705
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
CVE-2024-1705
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
Code injection
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
CVE-2024-1705 Shopwind Installation DefaultController.php actionCreate code injection
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
CVE-2024-1705 Shopwind Installation DefaultController.php actionCreate code injection
A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...
CVE-2024-1705
CVE-2024-1705 affects Shopwind up to version 4.6. The vulnerability is in the Installation component, specifically the actionCreate function of /public/install/controllers/DefaultController.php, allowing code injection. Impact is remote execution with high severity; exploitation is reported as kn...