8 matches found
CVE-2025-34039 Yonyou NC BeanShell Command Injection
A code injection vulnerability exists in Yonyou UFIDA NC v6.5 and prior due to the exposure of the BeanShell testing servlet bsh.servlet.BshServlet without proper access controls. The servlet allows unauthenticated remote attackers to execute arbitrary Java code via the bsh.script parameter. This...
CVE-2025-34039
CVE-2025-34039 affects Yonyou UFIDA NC v6.5 and earlier, due to exposure of the BeanShell testing servlet (bsh.servlet.BshServlet) without proper access controls. An unauthenticated remote attacker can exploit the bsh.script parameter to execute arbitrary Java code, potentially running system com...
Yonyou NC integrated office platform /epp/detail/publishinfomore. jsp parameters pk_infotype SQL injection vulnerability
No description provided by source...
Yonyou NC integrated office systems /epp/html/nodes/upload/supdoc. jsp file pkcorp parameter SQL injection vulnerability
No description provided by source...
YonYou NC在/nc/servlet/nc.ui.iufo.login.LoginUI存在SQL盲注漏洞
No description provided by source...
Yonyou NC-IUFO /epp/LoginServerDo.jsp SQL注入漏洞
No description provided by source...
Yonyou NC-IUFO /epp/detail/publishinfodetail.jsp SQL注入漏洞
No description provided by source...
yonyou NC /epp/LoginServerDo.jsp SQL注入漏洞
No description provided by source...