smartbi RMIServlet login bypass vulnerability Vulnerability Description Smartbi will have several users built-in when installing. When using a specific interface, it can bypass the user identity ...

rConfig useradmin.inc.php Information leakage vulnerability Vulnerability Description rConfig useradmin.inc.php has an information leakage vulnerability, and you can obtain user email information...

rConfig ajaxEditTemplate.php Background remote command execution vulnerability Vulnerability Description rConfig ajaxEditTemplate.php exists in the background remote command execution Vulnerabil...

rConfig ajaxArchiveFiles.php Background Remote Command Execution Vulnerability Vulnerability Description Due to the command splicing of path parameters and ext parameters in the rConfig ajaxArchi...

nginxWebUI runCmd remote command execution vulnerability Vulnerability Description There is a remote command execution vulnerability in the nginxWebUI runCmd interface. The attacker can obtain se...

nginxWebUI cmdOver background command execution vulnerability Vulnerability Description There is a command execution vulnerability in the nginxWebUI background. After the attacker logs into the b...

muhttpd arbitrary file reading vulnerability CVE-2022-31793 Vulnerability Description muhttpd (mu-HTTP-deamon) is a simple but complete web server written in portable ANSI C. Muhttpd versions be...

kkFileView getCorsFile arbitrary file reading vulnerability CVE-2021-43734 Vulnerability Description There is a vulnerability to read any file in the kkFileView getCorsFile version 3.6.0. The att...

jQuery XSS vulnerability CVE-2020-11022 Vulnerability Description According to NVD description: In jQuery versions greater than or equal to 1.2 and before 3.5.0, even if sanitize is performed, DO...

imo cloud office get_file.php remote command execution vulnerability Vulnerability Description imo cloud office /file/NDisk/get_file.php filtering is not strictly caused by unlimited upload of fi...