Emissary 安全漏洞

Emissary is a software application. A P2P-based data-driven workflow engine that runs on heterogeneous and potentially widely distributed multi-tier P2P network computing resources. A security vulnerability exists in Emissary 5.9.0, which can be exploited by an attacker to delete arbitrary files...

Logic Flaw Vulnerability in Galloping Workflow Engine CCBMP Workflow Management System, Process Designer System

Jinan Chidori Information Technology Co., Ltd. specializes in process engine form engine research and development and innovation. A logic flaw vulnerability exists in the workflow engine CCBMP workflow management system and process designer system. An attacker can utilize the vulnerability to...

Argo Code Issues Vulnerabilities

Argo is an open source container native workflow engine. A code issue vulnerability exists in Argo CD versions prior to 1.8.4, which stems from the incorrect handling of Token in the util/session/sessionmanager.go file, resulting in the Token remaining valid after the user is unavailable. No...

File Upload Vulnerability in TpFlow Workflow Engine

TpFlow workflow engine is a PHP-based development of the workflow engine . A file upload vulnerability exists in TpFlow Workflow Engine, which can be exploited by an attacker to gain control of a web server...

Argo Authorization Issue Vulnerability (CNVD-2020-27456)

Argo is an open source container native workflow engine. Argo suffers from an authorization issue vulnerability that stems from the program not implementing anti-automation protections. An attacker could use this vulnerability to brute-force break the administrator password...

SQL Injection Vulnerabilities Exist in Many Places in Yuanheng Times Workflow Engine System

Beijing Yuanheng Times Technology Co., Ltd. is the first full-service IT service provider in China to launch a collaboration management system based on Microsoft SharePoint platform. SQL injection vulnerability exists in many places in the workflow engine system of Yuanheng Times, which can be...

CVE-2004-1630

Cross-site scripting XSS vulnerability in the login form in Open WorkFlow Engine OpenWFE 1.4.x allows remote attackers to execute arbitrary web script or HTML via the url parameter...

CVE-2004-1631

Open WorkFlow Engine OpenWFE 1.4.x allows remote attackers to conduct port scans of remote hosts by specifying the target in an rmi:// Worklist URL, then using the response times to infer the results...

CVE-2004-1631

Technical details about CVE-2004-1631 are not publicly available in the provided documents; no affected products, versions, impact, or fixes are described here. Monitor for updates.

CVE-2004-1631

Open WorkFlow Engine OpenWFE 1.4.x allows remote attackers to conduct port scans of remote hosts by specifying the target in an rmi:// Worklist URL, then using the response times to infer the results...

CVE-2004-1630

Cross-site scripting XSS vulnerability in the login form in Open WorkFlow Engine OpenWFE 1.4.x allows remote attackers to execute arbitrary web script or HTML via the url parameter...