CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability classified as critical was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. This vulnerability affects unknown code of the file /Duty/AjaxHandle/Write/UploadFile.ashx of the component Duty Write-UploadFile. The manipulation ...

9.8CVSS7AI score0.00114EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:0 a.m.•5 views

CVE-2023-3623

A vulnerability was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230704. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Duty/AjaxHandle/UploadHandler.ashx of the component Duty Module. The...

9.8CVSS6.8AI score0.00114EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:12 a.m.•5 views

CVE-2023-3626

A vulnerability, which was classified as critical, has been found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. This issue affects some unknown processing of the file /Duty/AjaxHandle/UpLoadFloodPlanFile.ashx of the component...

9.8CVSS6.8AI score0.00122EPSS

Exploits1References1

OSV•added 2023/07/11 6:15 p.m.•1 views

CVE-2023-3625

9.8CVSS6.2AI score

Exploits0References3

NVD•added 2023/07/11 6:15 p.m.•8 views

CVE-2023-3625

9.8CVSS7.2AI score0.00114EPSS

Exploits1References3

NVD•added 2023/07/11 6:15 p.m.•6 views

CVE-2023-3626

9.8CVSS7.2AI score0.00122EPSS

Exploits1References3

OSV•added 2023/07/11 6:15 p.m.•0 views

CVE-2023-3626

9.8CVSS5.3AI score

Exploits0References3

Prion•added 2023/07/11 6:15 p.m.•15 views

Out-of-bounds

6.5CVSS9.4AI score0.00114EPSS

Exploits1References3Affected Software1

Prion•added 2023/07/11 6:15 p.m.•10 views

Out-of-bounds

6.5CVSS9.4AI score0.00122EPSS

Exploits1References3Affected Software1

CVE•added 2023/07/11 6:0 p.m.•33 views

CVE-2023-3626

CVE-2023-3626 affects Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230706. The issue resides in the UpLoadFloodPlanFile.ashx handler (UpLoadFloodPlanFile component) where manipulation of the Filedata argument allows unrestricted file upload. Exploitatio...

9.8CVSS8.1AI score0.00122EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/07/11 6:0 p.m.•13 views

CVE-2023-3626 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System UpLoadFloodPlanFile UpLoadFloodPlanFile.ashx unrestricted upload

6.5CVSS9.7AI score0.00122EPSS

Exploits1References3

Cvelist•added 2023/07/11 5:31 p.m.•15 views

CVE-2023-3625 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Write-UploadFile UploadFile.ashx unrestricted upload

6.5CVSS9.7AI score0.00114EPSS

Exploits1References3

CVE•added 2023/07/11 5:31 p.m.•30 views

CVE-2023-3625

Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System (up to 20230706) has a vulnerability in the Duty Write-UploadFile component: the /Duty/AjaxHandle/Write/UploadFile.ashx endpoint processes Filedata and allows unrestricted upload. This can be exploited remotely and i...

9.8CVSS8.1AI score0.00114EPSS

Exploits1References3Affected Software1

OSV•added 2023/07/11 5:15 p.m.•2 views

CVE-2023-3623

9.8CVSS5.4AI score0.00114EPSS

Exploits1References3

NVD•added 2023/07/11 5:15 p.m.•7 views

CVE-2023-3623

9.8CVSS7.1AI score0.00114EPSS

Exploits1References3

Cvelist•added 2023/07/11 4:31 p.m.•13 views

CVE-2023-3623 Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Module UploadHandler.ashx unrestricted upload