CVE-2025-11337

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

CVE-2025-11337

The CVE-2025-11337 issue affects Four-Faith Water Conservancy Informatization Platform (versions up to 2.2). A path traversal vulnerability exists in the handling of the fileName parameter in endpoints such as /aloneReport/index.do/../../aloneReport/download.do and /othersusrlogout.do, enabling r...

CVE-2025-11336

CVE-2025-11336 affects the Four-Faith Water Conservancy Informatization Platform (up to 2.2; vendor advisories reference 2.3+). A path traversal flaw exists in the handling of the fileName parameter for the endpoint involving the file path /stAlarmConfigure/index.do/../../aloneReport/download.do;...

Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞

Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 2.2 and prior versions, which stems from an incorrect manipulation of the...

Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞

Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 2.2 and prior versions, which stems from an incorrect manipulation of the...

CVE-2025-11018

Four-Faith Water Conservancy Informatization Platform 1.0 is affected by a path traversal flaw. The vulnerability lies in the handling of the fileName argument of the endpoint chain /sysRole/index.do/../../generalReport/download.do;usrlogout.do.do, enabling remote exploitation. An exploit has bee...

Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞

Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 1.0, which originates from an attack on the file /sysRole/index.do/... /...

PT-2025-39642

Name of the Vulnerable Software and Affected Versions Four-Faith Water Conservancy Informatization Platform version 1.0 Description A path traversal flaw exists in Four-Faith Water Conservancy Informatization Platform version 1.0. The issue affects an unknown function within the file...

CVE-2025-10708 Four-Faith Water Conservancy Informatization Platform historyDownload.do;usrlogout.do path traversal

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this vulnerability is an unknown functionality of the file /history/historyDownload.do;usrlogout.do. The manipulation of the argument fileName leads to path traversal. Remote...

Four-Faith Water Conservancy Informatization 安全漏洞

Four-Faith Water Conservancy Informatization is a water conservancy informatization system from China Four-Faith Four-Faith. A security vulnerability exists in Four-Faith Water Conservancy Informatization version 1.0, which stems from an incorrect manipulation of the parameter fileName in the fil...

PT-2025-38528

Name of the Vulnerable Software and Affected Versions Four-Faith Water Conservancy Informatization Platform version 1.0 Description A path traversal vulnerability exists due to the manipulation of the fileName argument. This issue affects some unknown functionality within the files...

Four-Faith Water Conservancy Informatization 安全漏洞

Four-Faith Water Conservancy Informatization is a water conservancy informatization system from China Four-Faith Four-Faith. A security vulnerability exists in Four-Faith Water Conservancy Informatization version 1.0, which stems from an incorrect manipulation of the parameter fileName in the fil...

SQL Injection Vulnerability in Water Resources Engineering Management System of Siltronic Ltd.

SCT is an information service provider in China, dedicated to the cause of disaster mitigation and benefit reduction, and provides the government with comprehensive solutions for disaster mitigation and benefit reduction informatization. A SQL injection vulnerability exists in the water project...

There is a file uploading vulnerability in the water conservancy project standardized management operation platform of Siltronic Ltd.

Siltronic Ltd. China disaster reduction and profitability information service provider. A file upload vulnerability exists in the standardized management and operation platform for water conservancy projects of Siltronic Technology Limited, which can be exploited by attackers to gain control of t...

Unauthorized Access Vulnerability in NC2000 of Nanjing Nanrui Group Corporation Water Conservancy and Hydropower Technology Branch Company

NC2000 is a computerized monitoring system software developed by Nanjing Nanrui, which is used in power systems and large and medium-sized hydropower stations. Nanjing Nanrui Group Corporation Water Conservancy and Hydropower Technology Branch NC2000 has an unauthorized access vulnerability, whic...