83 matches found
CVE-2020-7815
TOBESOFT XPLATFORM 9.2.260 (and earlier 9.2.250 on Windows) is affected by a file-download vulnerability in COMPONENT . The issue lets an attacker supply arguments to the vulnerable method to download remote files and execute code. No explicit exploit details are provided beyond this description,...
Tobesoft Xplatform Resource Management Error Vulnerability
Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A resource management error vulnerability exists in Tobesoft Xplatform versions 9.1 through 9.2.2. An...
CVE-2019-19162
A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...
CVE-2019-19162
A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...
Design/Logic Flaw
A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...
CVE-2019-19162
A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...
CVE-2019-19162
CVE-2019-19162 corresponds to a use-after-free vulnerability in Tobesoft XPlatform. Affected product: Tobesoft XPlatform versions 9.1–9.2.2. Internal issue: use-after-free in resource handling leading to potential code execution on an affected system. Related sources from CNVD-2020-34996 and othe...
Tobesoft XPlatform Code Execution Vulnerability (CNVD-2020-35375)
Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A security vulnerability exists in Tobesoft Xplatform. A remote attacker can exploit the vulnerability t...
Tobesoft Xplatform Code Execution Vulnerability
Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A security vulnerability exists in Tobesoft Xplatform 9.2.2.250 and prior versions. A remote attacker ca...
CVE-2020-7806
Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...
CVE-2020-7806
Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...
CVE-2019-19166
Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...
CVE-2019-19166
Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...
Remote code execution
Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...
Remote code execution
Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...
CVE-2020-7806
The vulnerability CVE-2020-7806 affects Tobesoft Xplatform ActiveX in version 9.2.2.250 and earlier. The issue is an arbitrary code execution via a method supported by the Xplatform ActiveX Control, enabling remote code execution. Exploitation details are not provided in the connected documents; ...
CVE-2020-7806 Tobesoft Xplatform ActiveX File Download Vulnerability
Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...
CVE-2019-19166
CVE-2019-19166 affects Tobesoft XPlatform versions 9.1, 9.2.0, 9.2.1 and 9.2.2, where it can load unauthorized DLL files and cause remote code execution. The provided connected documents confirm the vulnerability exists in these XPlatform builds and that the attack outcome is remote execution via...
CVE-2019-19166 Tobesoft XPlatform Arbitrary File Execution Vulnerability
Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...
Command injection
A vulnerability in the ExtCommon.dll user extension module version 9.2, 9.2.1, 9.2.2 of Xplatform ActiveX could allow attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command parameters. An crafted malicious parameters could cause...