113 matches found
OpenClinic GA has an unspecified vulnerability
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. A security vulnerability exists in OpenClinic GA version 5.09.02 and version 5.89.05b. An attacker can exploit this...
Extreme CMS suffers from SQL injection vulnerability (CNVD-2020-33092)
Extreme CMS is an enterprise-level open source content building system. Extreme CMS has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...
SQL Injection Vulnerability in Dm Website Building System
DM enterprise building system is developed by php + mysql for small and medium-sized enterprise website construction of a set of open source cms. Dm website builder system has a SQL injection vulnerability , attackers can use the vulnerability to obtain database sensitive information...
Command Execution Vulnerability in imcat Backend
imcat is a PHP-based open source website building system . imcat backend there is a command execution vulnerability, attackers can use the vulnerability to obtain control of the web server...
ShopsN open source mall system sa*** function SQL injection vulnerabilities exist
ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd., a full-featured in line with enterprise-class commercial standards for free commercial use of the open source online store full network system . ShopsN open source mall system sa function there are SQL...
File Upload Vulnerability in Scarecrow Enterprise Website
The Inari Enterprise Station is an open source simple and compact free enterprise website system based on PHP+Sqlite/MySQL. Scarecrow Enterprise Station has a file upload vulnerability that can be exploited by attackers to gain access to the web server...
XSS Vulnerability in Born Creative OA System
Born Creative OA office system for the first domestic open source OA software producers, using the leading B / S architecture, cross-platform language php + mysql and other flexible applications, is one of China's most extensive user base of OA systems. Born Creative OA system there are XSS...
5iSNS content payment system has XSS vulnerability
5iSNS content payment system is a home-grown , small , stable , support in large amounts of data still maintain a high load capacity of the SNS open source system , the system supports unlimited module expansion , plug-in expansion . 5iSNS content payment system XSS vulnerability , attackers can...
Contao Information Disclosure Vulnerability
Contao is an open source content management system CMS developed using PHP. The system supports search engine , rights management and CSS framework . An information disclosure vulnerability exists in Contao versions 4.0 to 4.8.5. The vulnerability arises from errors in configuration and other...
File Upload Vulnerability in LeShangShang Mall Open Source System
Good user experience, good stability, scalability and security, can provide mall construction solutions for small and medium-sized sites. Le Shang Mall open source system file upload vulnerability , attackers can use the vulnerability to obtain server information and control permissions...
ZZZphp sa***.php page ad*** parameter has SQL injection vulnerability
ZZZphp is a PHP and MYSQL based on free open source website building system . ZZZphp sa.php page ad parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...
File Upload Vulnerability in LeShangShang Mall Open Source System
Good user experience, good stability, scalability and security, can provide mall construction solutions for small and medium-sized sites. Le Shang Mall open source system file upload vulnerability , attackers can use the vulnerability to obtain server information and control permissions...
ZZZphp sa***.php page li*** parameter has SQL injection vulnerability
ZZZphp is a PHP and MYSQL based on free open source website building system . ZZZphp sa.php page li parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...
File Upload Vulnerability in LeShangShang Mall Open Source System
Good user experience, good stability, scalability and security, can provide mall construction solutions for small and medium-sized sites. Le Shang Mall open source system file upload vulnerability , attackers can use the vulnerability to obtain server information and control permissions...
SQL injection vulnerability in the fo***.class.php file of Laikai e-commerce management system
Laike e-commerce management system is an open source e-commerce management system. Laike e-commerce management system fo.class.php file SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information...
File Upload Vulnerability in Laike E-commerce System V2.0
Laike e-commerce management system is a small program open source system. Laike Ecommerce System V2.0 has a file upload vulnerability that can be exploited by attackers to upload malicious files...
Jumpserver bastion is vulnerable to logic flaws
Jumpserver is an open source bastion , using the GNU GPLv2.0 open source protocol , is in line with the 4A professional operations audit system . Jumpserver bastion machine has a logic flaw vulnerability that can be exploited by attackers to cause MFA secondary authentication can be bypassed...
SQL injection vulnerability in in***.php file of Laikai e-commerce system (CNVD-2020-00182)
Laike e-commerce system is an open source e-commerce system. Laike e-commerce system in.php file contains a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...
Discuz!ML 3.x Arbitrary Code Execution Vulnerability
Discuz!ML is a multilingual open source community system based on the Discuz!X engine. An arbitrary code execution vulnerability exists in Discuz!ML 3.x, which can be exploited by attackers to execute arbitrary code...
EarCMS APP has xss vulnerability
EarCMS APP is a PHP open source system. EarCMS APP has an xss vulnerability that can be exploited by attackers to obtain user cookies...