A vulnerability, which was classified as critical, has been found in Wuzhi CMS 4.1.0 (Content Management System). This issue affects an unknown function of the file coreframe/app/promote/admin/index.php. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Wuzhi CMS 4.1.0 index.php keywords sql injection
- Virtual Patching
- September 16, 2021
- 10:04 pm
CVE-2024-7261 : ZYXEL NWA1123ACV3/WAC500/WAX655E/WBE530/USG LITE 60AX COOKIE HOST OS COMMAND INJECTION
Description The improper neutralization of special elements in the parameter “host” in the CGI program of Zyxel NWA1123ACv3 firmware version
CVE-2024-1621 : NT-WARE UNIFLOW ONLINE UP TO 2024.1.0 REGISTRATION VERIFICATION OF SOURCE
Description The registration process of uniFLOW Online (NT-ware product) apps, prior to and including version 2024.1.0, can be compromised when
CVE-2024-45623 : D-LINK DAP-2310 1.16RC028 ATP BINARY STACK-BASED OVERFLOW
Description D-Link DAP-2310 Hardware A Firmware 1.16RC028 allows remote attackers to execute arbitrary code via a stack-based buffer overflow in