EUVD-2018-10798

Malware in sbrugna...

File upload vulnerability exists in WeCenter of Shenzhen Weik Interactive Co.(CNVD-2021-34219)

WeCenter is a php question and answer system developed in PHP MySQL. A file upload vulnerability exists in WeCenter by Shenzhen Weik Interactive Co. An attacker can use this vulnerability to overwrite server files to gain control of the server...

Command Execution Vulnerability in WeCenter of Anhui Simplify Information Technology Co.

WeCenter is an open source program for building knowledge communities. Anhui Simplify Information Technology Co., Ltd WeCenter has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

Command Execution Vulnerability in WeCenter of Anhui Simplify Information Technology Co. Ltd (CNVD-2021-33411)

WeCenter is an open source program for building knowledge communities. Anhui Simplify Information Technology Co., Ltd WeCenter has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

Command Execution Vulnerability in WeCenter Admin Backend

WeCenter Social Knowledge Quiz System is a php quiz system developed with PHP+MySQL. A command execution vulnerability exists in the WeCenter administration backend. An attacker can exploit this vulnerability to gain control of the server...

Stored Cross-Site Scripting Vulnerability in WeCenter

WeCenter Social Knowledge Quiz System is a php quiz system developed with PHP+MySQL. WeCenter has a stored cross-site scripting vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...

File Upload Vulnerability in WeCenter 3.6.0 Admin Backend

WeCenter is an open source knowledge-based social Q&A community program. A file upload vulnerability exists in the WeCenter 3.6.0 administration background, which can be exploited by an attacker to upload a webshell and gain server privileges...

File upload vulnerability in version 3.6.0 of the WeCenter Social Q&A Community program

WeCenter is an open source knowledge-based social Q&A community program. A file upload vulnerability exists in version 3.6.0 of the WeCenter social Q&A community program, which can be exploited by an attacker to gain server privileges...

XSS vulnerability in WeCenter aj***.php

WeCenter is an open source knowledge-based social Q&A community program. An XSS vulnerability exists in WeCenter aj.php, which can be exploited by an attacker to obtain user cookie information...

File Upload Vulnerability in Wecenter of Shenzhen Weike Interactive Co.

WeCenter is an open source knowledge-based social Q&A community program that focuses on organizing, categorizing and retrieving community content and distributing it by connecting to WeChat public platforms, mobile APPs. A file upload vulnerability exists in Shenzhen WeCenter, which can be...

Arbitrary File Deletion Vulnerability in WeCenter Learning Free Edition

WeCenter is an open source knowledge-based social Q&A community program. An arbitrary file deletion vulnerability exists in the free version of WeCenter Learning, which can be exploited by an attacker to delete arbitrary files from the server...

Shenzhen Microcosmos Interactive Limited Wecenter Learning Free Edition has a file upload vulnerability

WeCenter is an open source knowledge-based social Q&A community program that focuses on organizing, categorizing and retrieving community content, and distributing it by connecting to the WeChat public platform and mobile APP. Shenzhen WeCenter has a file upload vulnerability that can be exploite...

Code Execution Vulnerability in WeCenter

WeCenter is a PHP + MYSQL based similar to know the Q&A based open source social network builder. A code execution vulnerability exists in WeCenter, which can be exploited by attackers to execute malicious code...

SQL Injection Vulnerability in Wecenter of Shenzhen Weike Interactive Co.

WeCenter is a completely open source social networking program similar to Zhihu based on Q&A, based on PHP+MYSQL application architecture. WeCenter has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...

CVE-2018-19083

WeCenter 3.2.0 through 3.2.2 has XSS in the views/default/question/index.tpl.html htmlspecialcharsdecode function via the /?/publish/ajax/publishquestion/ questioncontent parameter...

CVE-2018-19083

WeCenter 3.2.0 through 3.2.2 has XSS in the views/default/question/index.tpl.html htmlspecialcharsdecode function via the /?/publish/ajax/publishquestion/ questioncontent parameter...

Default configuration

WeCenter 3.2.0 through 3.2.2 has XSS in the views/default/question/index.tpl.html htmlspecialcharsdecode function via the /?/publish/ajax/publishquestion/ questioncontent parameter...

CVE-2018-19083

WeCenter versions 3.2.0–3.2.2 contain a cross‑site scripting (XSS) vulnerability in the template views/default/question/index.tpl.html where htmlspecialchars_decode is applied to the question_content parameter passed via /?/publish/ajax/publish_question/. The CVE entry specifies the affected comp...

CVE-2018-19083

WeCenter 3.2.0 through 3.2.2 has XSS in the views/default/question/index.tpl.html htmlspecialcharsdecode function via the /?/publish/ajax/publishquestion/ questioncontent parameter...

wecenter top_id sql注入漏洞

No description provided by source...