Lucene search
+L

20 matches found

CNVD
CNVD
added 2021/11/16 12:0 a.m.15 views

Weak password vulnerability in Huawei USG2210E

The USG2210E Security Gateway is a new generation firewall/UTM appliance designed for small and medium-sized businesses/branch offices. A weak password vulnerability exists in Huawei USG2210E, which can be exploited by attackers to obtain sensitive information...

7AI score
Exploits0
CNVD
CNVD
added 2021/09/15 12:0 a.m.14 views

Siemens Desigo CC Series CCOM Communication Component Deserialization Vulnerability

Cerberus DMS is a hazard management station that helps users manage fire safety and security incidents.Desigo CC is an integrated building management platform for managing high-performance buildings.Desigo CC Compact expands the portfolio with solutions tailored for small and medium-sized...

10CVSS9.8AI score0.0189EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/09 12:0 a.m.21 views

Wage-CMS Cross-site Request Forgery Vulnerability

Wage-CMS is a payroll system based on laravel-admin for small and medium-sized businesses. wage-CMS version 1.5.-dev is vulnerable to cross-site request forgery. An attacker can use this vulnerability to add arbitrary users...

6.5CVSS4AI score0.00443EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/14 12:0 a.m.8 views

Huaxia ERP system has information leakage vulnerability

Huaxia ERP based on the SpringBoot framework and SaaS model for small and medium-sized enterprises to provide open source ERP software , currently focusing on sales and inventory financial production functions . Huaxia ERP system has an information leakage vulnerability that can be exploited by...

6.6AI score
Exploits0
CNVD
CNVD
added 2021/07/08 12:0 a.m.13 views

Arbitrary File Write Vulnerability in Panavision OA E-office

Panmicro OA E-office system is a professional collaborative OA software for small and medium-sized organizations, a leading brand in the field of domestic collaborative OA office, dedicated to providing professional OA office system, mobile OA applications and other collaborative OA overall...

7.2AI score
Exploits0
CNVD
CNVD
added 2021/07/01 12:0 a.m.6 views

SQL Injection Vulnerability in Chengdu Zero Takeoff Network Customer Management CRM System (CNVD-2021-50629)

Customer management CRM system is zero takeoff network development, based on the GPLv3 protocol release, for small and medium-sized management activities, to provide customer relationship management CRM, sales and marketing inventory JXC, human resources HRM, logistics office supplies, fixed...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/07/01 12:0 a.m.13 views

07FLY-CRM Customer Relationship Management System suffers from SQL Injection Vulnerability

07FLY-CRM customer relationship management system is based on the GPLv3 agreement issued for small and medium-sized management activities , currently provides customer relationship manager CRM, sales and marketing inventory JXC, the software is open-source and free of charge , in order to create...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/06/29 12:0 a.m.16 views

SQL Injection Vulnerability in Chengdu Zero Takeoff Network Customer Management CRM System

Customer management CRM system is zero takeoff network development, based on the GPLv3 protocol release, for small and medium-sized management activities, to provide customer relationship management CRM, sales and marketing inventory JXC, human resources HRM, logistics office supplies, fixed...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/24 12:0 a.m.17 views

Command Execution Vulnerability in Guojiz International Web Site Navigation System (CNVD-2021-46694)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a command execution vulnerability that can be exploited by...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/24 12:0 a.m.10 views

SQL injection vulnerability in Guojiz international web site navigation system (CNVD-2021-46693)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a SQL injection vulnerability, which can be exploited by...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/06/21 12:0 a.m.13 views

07FLY-CRM Customer Management System v1.2 suffers from SQL Injection Vulnerability

Zero take-off CRM management system 07FLY-CRM, based on the GPLv3 agreement issued for small and medium-sized management activities , currently provides customer relationship management CRM, sales and marketing inventory JXC, open source software free of charge , in order to create China's first...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/06/20 12:0 a.m.11 views

SQL Injection Vulnerability in 07FLY-CRM

07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/20 12:0 a.m.14 views

07FLY-CRM suffers from SQL injection vulnerability (CNVD-2021-46255)

07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/20 12:0 a.m.15 views

07FLY-CRM suffers from SQL injection vulnerability (CNVD-2021-46253)

07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM SQL injection vulnerability , an attacker can use this vulnerability to obtain sensitive information in the databa...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/19 12:0 a.m.13 views

07FLY-CRM has a flawed logic vulnerability

07FLY-CRM is a domestic open source general-purpose customer management system for various industries , mainly for small and medium-sized sales / after-sales service team . 07FLY-CRM has a logic flaw vulnerability that can be exploited by attackers to obtain sensitive information...

6.8AI score
Exploits0
CNVD
CNVD
added 2021/06/07 12:0 a.m.13 views

SQL Injection Vulnerability in Seiko Cloud MES (CNVD-2021-43583)

Jinggong Cloud MES, mainly for small and medium-sized manufacturing workshop management, based on industrial Internet, micro-services, cloud computing, Internet of Things, big data technology architecture, to provide low-cost, fast deployment, easy operation and maintenance of SAAS applications...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/04/06 12:0 a.m.3 views

Huaxia ERP suffers from SQL injection vulnerability (CNVD-2021-28475)

Huaxia ERP based on SpringBoot framework and SaaS model , to provide open source ERP software for small and medium-sized enterprises , currently focusing on sales and marketing inventory + financial + production functions . Huaxia ERP has a SQL injection vulnerability, which can be exploited by...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/01/26 12:0 a.m.3 views

Command Execution Vulnerability in ERP-PRO

ERP-PRO is based on the SpringBoot 2.X framework for small and medium-sized enterprises to build open source ERP software. ERP-PRO suffers from a command execution vulnerability. An attacker can exploit this vulnerability to gain control of the server...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/02/01 12:0 a.m.75 views

MailStore 10.0.1 Cross Site Scripting / Open Redirect

secuvera-SA-2017-02: Reflected XSS and Open Redirect in MailStore Server Affected Products MailStore Server Version 10.0.1.12148 was tested according to the vendor: - MailStore 9.2 to 10.0.1 is affected by the Reflected XSS Vulnerability - Mailstore 9.0 to 10.0.1 is affected by the Open Redirect...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/03/03 12:0 a.m.79 views

Schneider Electric SBO AS - Multiple Vulnerabilities

Schneider Electric SBO AS - Multiple Vulnerabilities Exploit Title: Schneider Electric SBO / AS Multiple Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.schneider-electric.com Versions Reported: Automation Server Series AS, AS-P, v1.7 and prior CVE-ID: CVE-2016-2278 About...

9CVSS0.4AI score0.13426EPSS
Exploits7
Rows per page
Query Builder