20 matches found
Weak password vulnerability in Huawei USG2210E
The USG2210E Security Gateway is a new generation firewall/UTM appliance designed for small and medium-sized businesses/branch offices. A weak password vulnerability exists in Huawei USG2210E, which can be exploited by attackers to obtain sensitive information...
Siemens Desigo CC Series CCOM Communication Component Deserialization Vulnerability
Cerberus DMS is a hazard management station that helps users manage fire safety and security incidents.Desigo CC is an integrated building management platform for managing high-performance buildings.Desigo CC Compact expands the portfolio with solutions tailored for small and medium-sized...
Wage-CMS Cross-site Request Forgery Vulnerability
Wage-CMS is a payroll system based on laravel-admin for small and medium-sized businesses. wage-CMS version 1.5.-dev is vulnerable to cross-site request forgery. An attacker can use this vulnerability to add arbitrary users...
Huaxia ERP system has information leakage vulnerability
Huaxia ERP based on the SpringBoot framework and SaaS model for small and medium-sized enterprises to provide open source ERP software , currently focusing on sales and inventory financial production functions . Huaxia ERP system has an information leakage vulnerability that can be exploited by...
Arbitrary File Write Vulnerability in Panavision OA E-office
Panmicro OA E-office system is a professional collaborative OA software for small and medium-sized organizations, a leading brand in the field of domestic collaborative OA office, dedicated to providing professional OA office system, mobile OA applications and other collaborative OA overall...
SQL Injection Vulnerability in Chengdu Zero Takeoff Network Customer Management CRM System (CNVD-2021-50629)
Customer management CRM system is zero takeoff network development, based on the GPLv3 protocol release, for small and medium-sized management activities, to provide customer relationship management CRM, sales and marketing inventory JXC, human resources HRM, logistics office supplies, fixed...
07FLY-CRM Customer Relationship Management System suffers from SQL Injection Vulnerability
07FLY-CRM customer relationship management system is based on the GPLv3 agreement issued for small and medium-sized management activities , currently provides customer relationship manager CRM, sales and marketing inventory JXC, the software is open-source and free of charge , in order to create...
SQL Injection Vulnerability in Chengdu Zero Takeoff Network Customer Management CRM System
Customer management CRM system is zero takeoff network development, based on the GPLv3 protocol release, for small and medium-sized management activities, to provide customer relationship management CRM, sales and marketing inventory JXC, human resources HRM, logistics office supplies, fixed...
Command Execution Vulnerability in Guojiz International Web Site Navigation System (CNVD-2021-46694)
Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a command execution vulnerability that can be exploited by...
SQL injection vulnerability in Guojiz international web site navigation system (CNVD-2021-46693)
Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a SQL injection vulnerability, which can be exploited by...
07FLY-CRM Customer Management System v1.2 suffers from SQL Injection Vulnerability
Zero take-off CRM management system 07FLY-CRM, based on the GPLv3 agreement issued for small and medium-sized management activities , currently provides customer relationship management CRM, sales and marketing inventory JXC, open source software free of charge , in order to create China's first...
SQL Injection Vulnerability in 07FLY-CRM
07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...
07FLY-CRM suffers from SQL injection vulnerability (CNVD-2021-46255)
07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...
07FLY-CRM suffers from SQL injection vulnerability (CNVD-2021-46253)
07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...
07FLY-CRM has a flawed logic vulnerability
07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM has a logic flaw vulnerability that can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Seiko Cloud MES (CNVD-2021-43583)
Jinggong Cloud MES, mainly for small and medium-sized manufacturing workshop management, based on industrial Internet, micro-services, cloud computing, Internet of Things, big data technology architecture, to provide low-cost, fast deployment, easy operation and maintenance of SAAS applications...
Huaxia ERP suffers from SQL injection vulnerability (CNVD-2021-28475)
Huaxia ERP based on SpringBoot framework and SaaS model , to provide open source ERP software for small and medium-sized enterprises , currently focusing on sales and marketing inventory + financial + production functions . Huaxia ERP has a SQL injection vulnerability, which can be exploited by...
Command Execution Vulnerability in ERP-PRO
ERP-PRO is based on the SpringBoot 2.X framework for small and medium-sized enterprises to build open source ERP software. ERP-PRO suffers from a command execution vulnerability. An attacker can exploit this vulnerability to gain control of the server...
MailStore 10.0.1 Cross Site Scripting / Open Redirect
secuvera-SA-2017-02: Reflected XSS and Open Redirect in MailStore Server Affected Products MailStore Server Version 10.0.1.12148 was tested according to the vendor: - MailStore 9.2 to 10.0.1 is affected by the Reflected XSS Vulnerability - Mailstore 9.0 to 10.0.1 is affected by the Open Redirect...
Schneider Electric SBO AS - Multiple Vulnerabilities
Schneider Electric SBO AS - Multiple Vulnerabilities Exploit Title: Schneider Electric SBO / AS Multiple Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.schneider-electric.com Versions Reported: Automation Server Series AS, AS-P, v1.7 and prior CVE-ID: CVE-2016-2278 About...