Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
EicE-document System

3 matches found

CVE
CVEadded 2021/03/17 9:10 a.m.35 views

CVE-2021-22860

CVE-2021-22860 affects the EIC e-document system (Excellent Infotek Corporation). The vulnerability arises from incomplete identity verification when sorting and filtering personnel data, allowing a remote attacker to obtain user credentials without logging in and potentially gain privileged perm...

9.8CVSS9.5AI score0.02558EPSS
CVE
CVEadded 2021/06/16 11:58 a.m.35 views

CVE-2021-34683

CVE-2021-34683 affects EXCELLENT INFOTEK CORPORATION (EIC) E-document System 3.0. A remote attacker can access the endpoint kw/auth/bbs/asp/get_user_email_info_bbs.asp to obtain the contact information (names and e-mail addresses) of everyone in the organization, enabling social engineering or br...

5.3CVSS5.2AI score0.01082EPSS
CVE
CVEadded 2021/03/17 9:10 a.m.34 views

CVE-2021-22859

CVE-2021-22859 affects the EIC e-document system: the data querying function does not filter special characters, enabling SQL injection. The root cause is improper input filtering in the query path, allowing remote attackers to inject SQL syntax and execute arbitrary commands without privileges. ...

9.8CVSS10AI score0.03751EPSS