53 matches found
CVE-2025-8589
CVE-2025-8589 is a Reflected XSS in AKCE Software Technology R&D Industry and Trade Inc. SKSPro (AKCE SKSPro) through version 07012026. The issue arises from improper neutralization of input during web page generation, enabling reflected XSS. Affects SKSPro versions up to 07012026; CVSS v3.1 base...
CVE-2025-8587
The CVE-2025-8587 entry describes an SQL Injection vulnerability in SKSPro from AKCE Software Technology R&D Industry and Trade Inc. The issue arises from improper neutralization of special elements in SQL commands, affecting SKSPro versions up to 07012026. Multiple feeds (Red Hat, NVD, CVE list,...
PT-2026-5656
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AKCE Software Technology R&D Industry and Trade Inc. SKSPro allows SQL Injection.This issue affects SKSPro: through 07012026...
Binary Vulnerability in Unisys UOS Browser at Unisys Software Technology Limited (CNVD-2025-18468)
Unisys Software Technology Co., Ltd. is a company specializing in the development and service of operating systems. A binary vulnerability exists in the Unisys UOS Browser, which can be exploited by attackers to cause a denial of service...
Binary Vulnerability in Unisys UOS Browser at Unisys Software Technology Limited (CNVD-2025-18469)
Unisys Software Technology Co., Ltd. is a company specializing in the development and service of operating systems. A binary vulnerability exists in the Unisys UOS Browser, which can be exploited by attackers to cause a denial of service...
Arbitrary File Read Vulnerability in Unisys UOS System of Unisys Software Technology Co.
Unisys Software Technology Co., Ltd. is a company specializing in operating system R&D and services, and is committed to providing safe, reliable, beautiful and easy-to-use domestic operating system solutions. There is an arbitrary file reading vulnerability in Unisys UOS system, which can be...
Binary Vulnerability in Chart Viewer Program of Unisys Software Technology Ltd.
Unisys Software Technology Co., Ltd. is a leading manufacturer of operating systems in China. A binary vulnerability exists in the Unisys Software Technologies Ltd. viewing program, which can be exploited by attackers to cause a denial of service...
SQL Injection Vulnerability in MetaCRM6 Customer Relationship Management System of Beijing Meta Software Technology Limited (CNVD-2024-47773)
MetaCRM6 Customer Relationship Management System is an integrated, comprehensive, customer-centric business management suite. A SQL injection vulnerability exists in the MetaCRM6 Customer Relationship Management System of Beijing Meta Software Technology Co. Ltd, which can be exploited by attacke...
Unisys UOS20 Professional Edition of Unisys Software Technology Ltd. suffers from a local extraction vulnerability
Unisys Software Technology Limited Unisys, founded in 2019, is a company that specializes in the research, development and service of operating systems. Unisys Software Technology Limited Unisys UOS20 Professional Edition suffers from a local elevation of privilege vulnerability, which can be...
Changsha YouDian Software Technology Co., Ltd. YouDianCMS has a logic flaw vulnerability
YouDianCMS set computer website, mobile website, micro letter, APP, small program in one, share space, data automatic synchronization, is the domestic open source five station one excellent solution. Changsha YouDianCMS has a logic flaw vulnerability that can be exploited by attackers to delete a...
Command Execution Vulnerability in MetaCRM6 Customer Relationship Management System of Beijing Meta Software Technology Co.
Beijing Metsoft Technology Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A command execution vulnerability exists in the MetaCRM6 customer relationship management system of Beijing Meta Software Technology Co. Ltd, which can be...
idcCMS Cross-Site Request Forgery Vulnerability (CNVD-2024-33205)
idcCMS Nettie IDC cloud management agent system is a cloud management agent system of Fuzhou Nettie Software Technology Co. A cross-site request forgery vulnerability exists in idcCMS v1.35, which originates from admin/infodeal.php?mudi=rev&nohrefStr=close not adequately verifying whether a reque...
Command Execution Vulnerability in UHarden of Unisys Software Technology Co.
UHarden is a security suite for Unisys UOS Server Edition. A command execution vulnerability exists in UHarden, which can be exploited by attackers to gain server privileges...
SQL Injection Vulnerability in MetaCRM6 Customer Relationship Management System of Beijing Meta Software Technology Co.
Beijing Metsoft Technology Co., Ltd. is a professional customer relationship management software provider. A SQL injection vulnerability exists in the MetaCRM6 customer relationship management system of Beijing Meta Software Technology Co. Ltd, which can be exploited by attackers to obtain...
File Upload Vulnerability in MetaCRM6 of Beijing Meta Software Technology Co.
MetaCRM6 is a customer relationship management system. A file upload vulnerability exists in MetaCRM6, which can be exploited by attackers to upload malicious files...
File Upload Vulnerability in MetaCRM6 Customer Relationship Management System of Beijing Meta Software Technology Co. Ltd (CNVD-2024-24693)
Beijing Metsoft Technology Co., Ltd. is a professional customer relationship management software provider. A file upload vulnerability exists in the MetaCRM6 customer relationship management system of Beijing Meta Software Technology Co. Ltd, which can be exploited by an attacker to gain control ...
SQL Injection Vulnerability in Active Security Monitoring Cloud Platform of Dongguan Tongtianxing Software Technology Co.
Dongguan Tongtianxing Software Technology Co., Ltd. focuses on providing platform services for positioning and wireless video terminal products, and the company has core technology and independent research and development capabilities. Dongguan Tongtianxing Software Technology Co., Ltd. active...
Command Execution Vulnerability in Ivanti Connect Secure at Inventec Software Technology (Beijing) Co.
Ivanti Connect Secure is a seamless, cost-effective SSL VPN solution for remote and mobile users. A command execution vulnerability exists in Ivanti Connect Secure by Inwanzi Software Technology Beijing Co. that can be exploited by an attacker to execute arbitrary commands...
Dongguan Tongtianxing Software Technology Co., Ltd. active security monitoring cloud platform has unauthorized access vulnerabilities
Dongguan Tongtianxing Software Technology Co., Ltd. is a video security service provider. Dongguan Tongtianxing Software Technology Co., Ltd. active security monitoring cloud platform has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information...
Information leakage vulnerability in retail terminal operation and maintenance management platform of Shanghai Bojun Software Technology Co.
Shanghai BJ Software Technology Co., Ltd BJST was founded in 1999, providing digital business consulting and system implementation for large and medium-sized enterprises, supporting the construction of omni-channel middle office, ERP, e-commerce OMS and other systems, covering a wide range of...