Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-9948

Malware in sbrugna...

7.5CVSS7.5AI score0.01519EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:56 p.m.8 views

CVE-2020-18019

SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "typeid" variable of the "createfolderAjax" function in the "modeworcAction.php" component...

7.5CVSS7.9AI score0.01519EPSS
Exploits1
CNVD
CNVD
added 2021/07/10 12:0 a.m.17 views

Command Execution Vulnerability in Xinhuo OA Office System (CNVD-2021-52069)

Xinhu OA office system is a free and open source office OA system. Xinhao OA Office System has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/07/09 12:0 a.m.13 views

Command Execution Vulnerability in Xinhuo OA Office System

Xinhu OA office system is an open source online office system. A command execution vulnerability exists in Xinhuo OA Office System, which can be exploited by a remote attacker to submit a special request that can execute arbitrary commands and gain shell privileges on the host...

8.3AI score
Exploits0
NVD
NVD
added 2021/04/28 2:15 p.m.15 views

CVE-2020-18019

SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "typeid" variable of the "createfolderAjax" function in the "modeworcAction.php" component...

7.5CVSS0.01519EPSS
Exploits1References1
Prion
Prion
added 2021/04/28 2:15 p.m.13 views

Sql injection

SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "typeid" variable of the "createfolderAjax" function in the "modeworcAction.php" component...

5CVSS7.8AI score0.01519EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/04/28 1:23 p.m.15 views

CVE-2020-18019

SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "typeid" variable of the "createfolderAjax" function in the "modeworcAction.php" component...

7.9AI score0.01519EPSS
Exploits1References1
CVE
CVE
added 2021/04/28 1:23 p.m.37 views

CVE-2020-18019

CVE-2020-18019: Xinhu OA System v1.8.3 contains an SQL injection in the typeid parameter of the createfolderAjax function (mode_worcAction.php). The root cause is unvalidated input allowing arbitrary commands to be injected, leading to unauthorized access to sensitive information. Reported impact...

7.5CVSS7.8AI score0.01519EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.4 views

信呼 Rockoa Xinhu SQL注入漏洞

Rockoa Xinhu is a Php-based office OA system from China Xinhu Rockoa. A SQL injection vulnerability exists in Xinhu OA System v1.8.3, which allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "createfolderAjax" function of the "mode worcAction.php"...

7.5CVSS7.8AI score0.01519EPSS
Exploits1References2
Rows per page
Query Builder