Lucene search
K

83 matches found

CVE
CVE
added 2020/07/10 1:5 p.m.46 views

CVE-2020-7815

TOBESOFT XPLATFORM 9.2.260 (and earlier 9.2.250 on Windows) is affected by a file-download vulnerability in COMPONENT . The issue lets an attacker supply arguments to the vulnerable method to download remote files and execute code. No explicit exploit details are provided beyond this description,...

9.8CVSS9.4AI score0.01194EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/05/12 12:0 a.m.3 views

Tobesoft Xplatform Resource Management Error Vulnerability

Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A resource management error vulnerability exists in Tobesoft Xplatform versions 9.1 through 9.2.2. An...

7.8CVSS7.4AI score0.01211EPSS
Exploits0References1
OSV
OSV
added 2020/05/11 6:15 p.m.4 views

CVE-2019-19162

A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...

7.8CVSS7.5AI score0.01211EPSS
Exploits0References1
NVD
NVD
added 2020/05/11 6:15 p.m.14 views

CVE-2019-19162

A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...

7.8CVSS7.8AI score0.01211EPSS
Exploits0References1
Prion
Prion
added 2020/05/11 6:15 p.m.14 views

Design/Logic Flaw

A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...

6.8CVSS7.8AI score0.01211EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/11 5:40 p.m.21 views

CVE-2019-19162

A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it...

7.8CVSS7.8AI score0.01211EPSS
Exploits0References1
CVE
CVE
added 2020/05/11 5:40 p.m.52 views

CVE-2019-19162

CVE-2019-19162 corresponds to a use-after-free vulnerability in Tobesoft XPlatform. Affected product: Tobesoft XPlatform versions 9.1–9.2.2. Internal issue: use-after-free in resource handling leading to potential code execution on an affected system. Related sources from CNVD-2020-34996 and othe...

7.8CVSS7.8AI score0.01211EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/05/07 12:0 a.m.2 views

Tobesoft XPlatform Code Execution Vulnerability (CNVD-2020-35375)

Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A security vulnerability exists in Tobesoft Xplatform. A remote attacker can exploit the vulnerability t...

7.8CVSS7.2AI score0.00392EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/07 12:0 a.m.3 views

Tobesoft Xplatform Code Execution Vulnerability

Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A security vulnerability exists in Tobesoft Xplatform 9.2.2.250 and prior versions. A remote attacker ca...

9.8CVSS7.2AI score0.00748EPSS
Exploits0References1
NVD
NVD
added 2020/05/06 1:15 p.m.16 views

CVE-2020-7806

Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...

9.8CVSS8.8AI score0.00748EPSS
Exploits0References2
OSV
OSV
added 2020/05/06 1:15 p.m.2 views

CVE-2020-7806

Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...

9.8CVSS8AI score0.00748EPSS
Exploits0References2
NVD
NVD
added 2020/05/06 1:15 p.m.21 views

CVE-2019-19166

Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...

7.8CVSS7.9AI score0.00392EPSS
Exploits0References2
OSV
OSV
added 2020/05/06 1:15 p.m.5 views

CVE-2019-19166

Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...

7.8CVSS7.4AI score0.00392EPSS
Exploits0References2
Prion
Prion
added 2020/05/06 1:15 p.m.14 views

Remote code execution

Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...

4.4CVSS7.8AI score0.00392EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/05/06 1:15 p.m.13 views

Remote code execution

Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...

7.5CVSS9.8AI score0.00748EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/05/06 12:50 p.m.53 views

CVE-2020-7806

The vulnerability CVE-2020-7806 affects Tobesoft Xplatform ActiveX in version 9.2.2.250 and earlier. The issue is an arbitrary code execution via a method supported by the Xplatform ActiveX Control, enabling remote code execution. Exploitation details are not provided in the connected documents; ...

9.8CVSS9.3AI score0.00748EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/06 12:50 p.m.18 views

CVE-2020-7806 Tobesoft Xplatform ActiveX File Download Vulnerability

Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code execution...

7.8CVSS9.9AI score0.00748EPSS
Exploits0References2
CVE
CVE
added 2020/05/06 12:44 p.m.49 views

CVE-2019-19166

CVE-2019-19166 affects Tobesoft XPlatform versions 9.1, 9.2.0, 9.2.1 and 9.2.2, where it can load unauthorized DLL files and cause remote code execution. The provided connected documents confirm the vulnerability exists in these XPlatform builds and that the attack outcome is remote execution via...

7.8CVSS7.9AI score0.00392EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/06 12:44 p.m.21 views

CVE-2019-19166 Tobesoft XPlatform Arbitrary File Execution Vulnerability

Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution...

7.8CVSS7.9AI score0.00392EPSS
Exploits0References2
Prion
Prion
added 2019/01/02 2:29 p.m.13 views

Command injection

A vulnerability in the ExtCommon.dll user extension module version 9.2, 9.2.1, 9.2.2 of Xplatform ActiveX could allow attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command parameters. An crafted malicious parameters could cause...

6.8CVSS7.8AI score0.01137EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder