A vulnerability classified as critical was found in ZhongBangKeJi CRMEB 3.1.0+. Affected by this vulnerability is the function Getshell
of the file /crmeb/crmeb/services/UploadService.php. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
ZhongBangKeJi CRMEB 3.1.0+ UploadService.php Getshell unrestricted upload
- Virtual Patching
- June 25, 2021
- 11:07 am
CVE-2024-32608 : HDF5 UP TO 1.14.3 H5A__CLOSE MEMORY CORRUPTION
Description HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing
CVE-2024-45160 : LEMONLDAP::NG UP TO 2.19.1 OAUTH2 CLIENT AUTHENTICATION CLIENT_PASSWORD IMPROPER AUTHENTICATION
Description Incorrect credential validation in LemonLDAP::NG 2.18.x and 2.19.x before 2.19.2 allows attackers to bypass OAuth2 client authentication via an
CVE-2024-45179 : ZA-INTERNET C-MOR VIDEO SURVEILLANCE 5.2401/6.00PL01 WEB INTERFACE SETTIMEZONE.PML CITY OS COMMAND INJECTION
Description An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input validation, the C-MOR