32 matches found
EUVD-2019-17835
Malware in sbrugna...
EUVD-2015-5033
Malware in sbrugna...
CVE-2024-25528
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklogtemplateshow.aspx...
CVE-2024-25528
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklogtemplateshow.aspx...
CVE-2024-25528
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklogtemplateshow.aspx...
CVE-2024-25527
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklogtemplateshow.aspx...
PT-2024-20988 · Ruvaroa · Ruvaroa
Name of the Vulnerable Software and Affected Versions: RuvarOA versions 6.01 through 12.01 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/PersonalAffair/worklog template show.aspx" API endpoint. Recommendations...
CVE-2024-25527
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklogtemplateshow.aspx...
RuvarOA 安全漏洞
RuvarOA is an office automation system of Ruvar China. A SQL injection vulnerability exists in RuvarOA v6.01 and v12.01, which originates from the id parameter of the /PersonalAffair/worklogtemplateshow.aspx file that lacks validation of externally entered SQL statements. An attacker can exploit...
PT-2024-20989 · Ruvaroa · Ruvaroa
Name of the Vulnerable Software and Affected Versions: RuvarOA versions 6.01 through 12.01 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/PersonalAffair/worklog template show.aspx" API endpoint. Recommendations...
SQL Injection Vulnerability in Worklog, a Qixing Worklog System (CNVD-2020-73419)
Kaixing worklog system worklog is to build the enterprise internal collaborative office based on B / S a software system . The system uses ASP.NET language development. Qixing worklog system worklog SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database...
SQL Injection Vulnerability in Kaixin Worklog System worklog
Kaixin Worklog Worklog system is a software system based on B/S to build the collaborative office within the enterprise. The system uses ASP.NET language development. Worklog system worklog star SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information...
XSS Vulnerability in Kaixin Worklog System worklog
Kaixin Worklog Worklog system is a software system based on B/S to build the collaborative office within the enterprise. The system uses ASP.NET language development. Kai star worklog system worklog there are XSS vulnerabilities , attackers can use the vulnerability to obtain sensitive informatio...
SQL Injection Vulnerability in Worklog Us***_Ro***.aspx file of Shanghai Tsuen Lu Software Development Studio.
Worklog system Worklog is a system that allows employees to record the content of their work, provide timely feedback to their superiors on difficulties encountered at work, and supervisors can assess the work of their employees and allow the system to generate KPI reports. Worklog UsRo.aspx file...
Unauthorized Access Vulnerability in Kaixin Worklog 28.0
Worklog is a B/S based software for structuring intra-enterprise collaborative work. An unauthorized access vulnerability exists in Worklog 28.0, which can be exploited by attackers to obtain sensitive information...
CVE-2019-8445
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...
CVE-2019-8445
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...
Design/Logic Flaw
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...
CVE-2019-8445
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...
CVE-2019-8445
CVE-2019-8445 is an Atlassian Jira worklog information disclosure vulnerability. TALOS reports that Jira versions 7.6.4 through 8.1.0 are affected and that authenticated users can view worklog details via the REST endpoint /rest/api/2/worklog/list due to a missing permissions check. The vulnerabi...