16 matches found
EUVD-2020-25203
Malware in sbrugna...
EUVD-2020-25202
Malware in sbrugna...
EUVD-2020-25204
Malware in sbrugna...
CVE-2021-32543 SysJust CTS Web - Broken Authentication
The CTS Web transaction system related to authentication management is implemented incorrectly. After login, remote attackers can manipulate cookies to access other accounts and trade in the stock market with spoofed identity...
CVE-2021-32541 SysJust CTS Web - Broken Access Control
The CTS Web transaction system related to authentication and session management is implemented incorrectly, which allows remote unauthenticated attackers can send a large number of valid usernames, and force those logged-in account to log out, causing the user to be unable to access the services...
CVE-2020-3939
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Cross-Site ScriptingXSS, personal information may be leaked to attackers via the vulnerability...
CVE-2020-3939
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Cross-Site ScriptingXSS, personal information may be leaked to attackers via the vulnerability...
CVE-2020-3937
SQL Injection in SysJust Syuan-Gu-Da-Shih, versions before 20191223, allowing attackers to perform unwanted SQL queries and access arbitrary file in the database...
CVE-2020-3938
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Request Forgery, allowing attackers to launch inquiries into network architecture or system files of the server via forged inquests...
CVE-2020-3938
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Request Forgery, allowing attackers to launch inquiries into network architecture or system files of the server via forged inquests...
Cross site scripting
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Cross-Site ScriptingXSS, personal information may be leaked to attackers via the vulnerability...
Cross site request forgery (csrf)
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Request Forgery, allowing attackers to launch inquiries into network architecture or system files of the server via forged inquests...
CVE-2020-3938
CVE-2020-3938 affects SysJust Syuan-Gu-Da-Shih versions before 20191223 and is described as a Request Forgery vulnerability that lets an attacker perform forged inquests to query the server’s network architecture or system files. The description does not specify affected product variants beyond t...
CVE-2020-3939
CVE-2020-3939 concerns SysJust Syuan-Gu-Da-Shih, with versions prior to 20191223 vulnerable to Cross-Site Scripting (XSS). The vulnerability may allow leakage of personal information to attackers. The publicly documented details specify the affected software and the XSS impact but do not provide ...
CVE-2020-3939 SysJust Syuan-Gu-Da-Shih -Cross-Site Scripting(XSS)
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Cross-Site ScriptingXSS, personal information may be leaked to attackers via the vulnerability...
CVE-2020-3937
The CVE-2020-3937 entry concerns a SQL injection vulnerability in SysJust Syuan-Gu-Da-Shih for versions before 20191223. The underlying issue is unsafely constructed SQL queries that allow an attacker to perform arbitrary SQL queries and access arbitrary files within the database. Impact details ...