CVE-2020-21785
In IBOS 4.5.4 Open, the database backup has Command Injection Vulnerability. Devamını Oku
Devamını oku
Kategori: NIST-Təhlükəsizlik Zəiflikləri
CVE-2020-21786
In IBOS 4.5.4 Open, Arbitrary File Inclusion causes getshell via /system/modules/dashboard/controllers/CronController.php. Devamını Oku
CVE-2020-18662 (gnuboard5)
SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db.php. Devamını Oku
CVE-2020-18663 (gnuboard5)
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the act parameter in bbs/move_update.php. Devamını Oku
CVE-2020-18664 (webport)
Cross Site Scripting (XSS) vulnerability in WebPort <=1.19.1via the connection name parameter in type-conn. Devamını Oku
CVE-2020-18665 (webport)
Directory Traversal vulnerability in WebPort <=1.19.1 in tags of system settings. Devamını Oku
CVE-2020-18661
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the url parameter to bbs/login.php. Devamını Oku
CVE-2020-21787
CRMEB 3.1.0+ is vulnerable to File Upload Getshell via /crmeb/crmeb/services/UploadService.php. Devamını Oku
CVE-2020-21788
In CRMEB 3.1.0+ strict domain name filtering leads to SSRF(Server-Side Request Forgery). The vulnerable code is in file /crmeb/app/admin/controller/store/CopyTaobao.php. Devamını Oku
CVE-2020-18661 (gnuboard5)
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the url parameter to bbs/login.php. Devamını Oku