Lucene search
K

162 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-32264

Malicious code in bioql PyPI...

5.9CVSS4.8AI score0.00886EPSS
Exploits0References4
CNVD
CNVD
added 2025/06/05 12:0 a.m.3 views

SQL Injection Vulnerability in DSS Digital Surveillance System of Zhejiang Dahua Technology Co.

DSS Digital Surveillance System is a security video surveillance system with real-time monitoring, PTZ operation, video playback, alarm processing, device management and other functions. DSS Digital Surveillance System of Zhejiang Dahua Technology Co., Ltd. suffers from SQL injection vulnerabilit...

7.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:13 a.m.8 views

CVE-2024-3689

A vulnerability classified as problematic has been found in Zhejiang Land Zongheng Network Technology O2OA up to 20240403. Affected is an unknown function of the file /xportalassemblesurface/jaxrs/portal/list?v=8.2.3-4-43f4fe3. The manipulation leads to information disclosure. It is possible to...

3.7CVSS6.4AI score0.00886EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:47 a.m.5 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.8AI score0.00567EPSS
Exploits0References1
CNVD
CNVD
added 2025/03/20 12:0 a.m.9 views

SQL Injection Vulnerability in DSS of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. A SQL injection vulnerability exists in the DSS of Zhejiang Dahua Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information fro...

7.5AI score
Exploits0
CNVD
CNVD
added 2024/12/11 12:0 a.m.6 views

SQL Injection Vulnerability in the Video Management Platform of Zhejiang YUV Technology Co.

uniview, a global provider of AIoT products, solutions and full-stack capabilities. A SQL injection vulnerability exists in the video management platform of Zhejiang Uniview Technology Co. Ltd, which can be exploited by an attacker to obtain sensitive information from the database...

7.5AI score
Exploits0
CNVD
CNVD
added 2024/12/01 12:0 a.m.6 views

Command Execution Vulnerability in Intelligent IOT Integrated Management Platform of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. A command execution vulnerability exists in the Intelligent IOT Integrated Management Platform of Zhejiang Dahua Technology Co. Ltd, which can be exploited b...

7.9AI score
Exploits0
CNVD
CNVD
added 2024/11/06 12:0 a.m.4 views

Information Leakage Vulnerability in DSS System of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. An information leakage vulnerability exists in the DSS system of Zhejiang Dahua Technology Co. Ltd, which can be exploited by attackers to obtain sensitive...

6.6AI score
Exploits0
CNVD
CNVD
added 2024/11/05 12:0 a.m.6 views

SQL Injection Vulnerability in Intelligent Park Integrated Management Platform of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. A SQL injection vulnerability exists in the Smart Park Integrated Management Platform of Zhejiang Dahua Technology Co. Ltd, which can be exploited by attacke...

7.5AI score
Exploits0
CNVD
CNVD
added 2024/11/01 12:0 a.m.5 views

Command Execution Vulnerability in Intelligent Park Integrated Management Platform of Zhejiang Dahua Technology Co.

Zhejiang Dahua Co., Ltd. is a leading supplier of surveillance products and solution service provider for the world to provide leading video storage, front-end, display control and intelligent transportation and other series of products, and provide to provide thermal imaging temperature...

7.5AI score
Exploits0
NVD
NVD
added 2024/10/11 4:15 p.m.9 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS0.00567EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/11 12:0 a.m.12 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

0.00567EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/11 12:0 a.m.5 views

Zhejiang University Entersoft Customer Resource Management System 安全漏洞

Zhejiang University Entersoft Customer Resource Management System is a customer resource management system developed by the Zhejiang University team in China. A security vulnerability exists in the Zhejiang University Entersoft Customer Resource Management System due to an arbitrary file upload...

9.8CVSS7AI score0.00567EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/11 12:0 a.m.15 views

CVE-2024-46088

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang University Entersoft Customer Resource Management System v2002 to v2024 allows attackers to execute arbitrary code via uploading a crafted file...

7.8AI score0.00567EPSS
Exploits0References3
CVE
CVE
added 2024/10/11 12:0 a.m.39 views

CVE-2024-46088

CVE-2024-46088 affects Zhejiang University Entersoft Customer Resource Management System (v2002–v2024) via the ProductAction.entphone interface. The vulnerability is an arbitrary file upload that allows remote code execution. Root cause: improper file upload handling. Impact: potential full compr...

9.8CVSS7.8AI score0.00567EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/11 12:0 a.m.4 views

PT-2024-31907 · Zhejiang University · Zhejiang University Entersoft Customer Resource Management System

Name of the Vulnerable Software and Affected Versions: Zhejiang University Entersoft Customer Resource Management System versions v2002 through v2024 Description: An arbitrary file upload vulnerability in the ProductAction.entphone interface allows attackers to execute arbitrary code via uploadin...

9.8CVSS8.2AI score0.00567EPSS
Exploits0References7
CNVD
CNVD
added 2024/09/20 12:0 a.m.6 views

SQL Injection Vulnerability in Digital Surveillance System of Zhejiang Dahua Technology Co. Ltd (CNVD-2024-42251)

Zhejiang Dahua Technology Co., Ltd. is a leading supplier and solution provider of surveillance products. A SQL injection vulnerability exists in Digital Surveillance System of Zhejiang Dahua Technology Co. Ltd, which can be exploited by an attacker to obtain sensitive information from the databa...

7.4AI score
Exploits0
CNVD
CNVD
added 2024/09/12 12:0 a.m.3 views

SQL Injection Vulnerability in Intelligent Park Integrated Management System of Zhejiang Dahua Technology Co.(CNVD-2024-41305)

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. A SQL injection vulnerability exists in the integrated management system of the Smart Park of Zhejiang Dahua Technology Co. Ltd, which can be exploited by...

7.5AI score
Exploits0
CNVD
CNVD
added 2024/08/30 12:0 a.m.4 views

Arbitrary File Download Vulnerability in Camera Service of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is a leading supplier and solution provider of surveillance products. An arbitrary file download vulnerability exists in the camera service of Zhejiang Dahua Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information...

7AI score
Exploits0
CNVD
CNVD
added 2024/08/19 12:0 a.m.20 views

SQL Injection Vulnerability in Intelligent Cloud Gateway Registration Management Platform of Zhejiang Dahua Technology Co.(CNVD-2024-38747)

Zhejiang Dahua Technology Co., Ltd. is the world's leading video-centered intelligent IOT solution provider and operation service provider. A SQL injection vulnerability exists in the Smart Cloud Gateway registration management platform of Zhejiang Dahua Technology Co. Ltd, which can be exploited...

7.5AI score
In wildExploits0
Rows per page
Query Builder