Lvzc1

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical vulnerability has been found in the product list.php file of Fanli2012 native-php-cms. The issue is related to the manipulation of the `cat` argument, which leads to SQL injection. This can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For Fanli2012 native-php-cms version 1.0, consider restricting access to the product list.php file or disabling the manipulation of the `cat` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical issue has been found in the software, affecting an unknown function of the file /fladmin/cat dodel.php. The manipulation of the `id` argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/cat dodel.php file until a patch is available. Avoid using the `id` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical issue has been found in the processing of the file /fladmin/article dodel.php. The manipulation of the `id` argument leads to SQL injection. The attack may be initiated remotely. The issue has been publicly disclosed and may be used. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/article dodel.php file until a patch is available. Avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical vulnerability was found in the file /fladmin/friendlink dodel.php, where the manipulation of the `id` argument leads to SQL injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/friendlink dodel.php file until a patch is available. Avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** donglight bookstore电商书城系统说明 version 1.0 **Description** A critical issue has been found in the `uploadPicture` function of the `AdminBookController` class, located in the file `src/main/java/org/zdd/bookstore/web/controller/admin/AdminBookController.java`. The manipulation of the `pictureFile` argument leads to unrestricted upload. This issue can be exploited remotely. The exploit has been publicly disclosed and may be used. **Recommendations** For version 1.0, as a temporary workaround, consider disabling the `uploadPicture` function until a patch is available. Restrict access to the `pictureFile` argument in the `uploadPicture` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd myblog version 1.0 **Description** A critical vulnerability has been found in ZeroWdd myblog, affecting an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. This issue leads to permission problems and can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For ZeroWdd myblog version 1.0, consider restricting access to the affected configuration file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** donglight bookstore versions 1.0.0 **Description** A critical issue affects the `getHtml` function of the file `src/main/java/org/zdd/bookstore/rawl/HttpUtil.java`. The manipulation of the `url` argument leads to server-side request forgery, allowing remote attack initiation. The exploit has been publicly disclosed and may be used. **Recommendations** For version 1.0.0, consider disabling the `getHtml` function until a patch is available to prevent server-side request forgery. Restrict access to the `HttpUtil.java` file to minimize the risk of exploitation. Avoid using the `url` argument in the affected function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd myblog version 1.0 **Description** A problem has been detected in the update function of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. This issue leads to cross site scripting attacks, which can be launched remotely. The exploit for this issue has been made public. **Recommendations** For ZeroWdd myblog version 1.0, as a temporary workaround, consider disabling the update function of the BlogController.java file until a patch is available. Restrict access to the src/main/java/com/wdd/myblog/controller/admin/BlogController.java file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd myblog version 1.0 **Description** A critical issue has been found in the upload function of the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java. The manipulation of the `file` argument leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For ZeroWdd myblog version 1.0, as a temporary workaround, consider disabling the upload function in the `uploadController.java` file until a patch is available. Restrict access to the `src/main/java/com/wdd/myblog/controller/admin/uploadController.java` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd myblog version 1.0 **Description** A critical issue has been found in the unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the `findBlogList` and `getTotalBlogs` arguments leads to xml injection. The attack can be initiated remotely. **Recommendations** For ZeroWdd myblog version 1.0, as a temporary workaround, consider restricting access to the `BlogMapper.xml` file until a patch is available. Avoid using the `findBlogList` and `getTotalBlogs` arguments in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** zhenfeng13 My-Blog version 1.0 **Description** A critical vulnerability was found in the upload function of the file src/main/java/com/site/blog/my/core/controller/admin/uploadController.java. The manipulation of the `file` argument leads to unrestricted upload. The attack can be launched remotely. **Recommendations** For zhenfeng13 My-Blog version 1.0, as a temporary workaround, consider disabling the upload function in the uploadController.java file until a patch is available. Restrict access to the upload functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** zhenfeng13 My-Blog version 1.0 **Description** A critical vulnerability has been found in the software. It affects the `uploadFileByEditomd` function in the file `src/main/java/com/site/blog/my/core/controller/admin/BlogController.java`. The manipulation of the argument `editormd-image-file` leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For zhenfeng13 My-Blog version 1.0, as a temporary workaround, consider disabling the `uploadFileByEditomd` function until a patch is available. Restrict access to the `editormd-image-file` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd studentmanager version 1.0 **Description** A vulnerability was found in the submitAddPermission function of the PermissionController.java file. The manipulation of the `url` argument leads to cross-site scripting. The attack may be initiated remotely. Other parameters might be affected as well. **Recommendations** For ZeroWdd studentmanager version 1.0, consider disabling the `submitAddPermission` function until a patch is available to prevent cross-site scripting attacks. Restrict access to the `PermissionController` to minimize the risk of exploitation. Avoid using the `url` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tongda OA versions 2017 up to 11.10 **Description** A critical issue was found in the file /pda/reportshop/next detail.php, where the manipulation of the `repid` argument leads to sql injection. It is possible to launch the attack remotely. The issue has been disclosed to the public and may be used. **Recommendations** For Tongda OA versions 2017 up to 11.10, consider disabling access to the /pda/reportshop/next detail.php file or restricting the use of the `repid` argument until a patch is available. As a temporary workaround, avoid using the `repid` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Tongda OA 2017 up to 11.10 **Description** A critical issue has been found in Tongda OA, affecting some unknown processing of the file /pda/reportshop/record detail.php. The manipulation of the `repid` argument leads to SQL injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tongda OA 2017 up to 11.10, as a temporary workaround, consider restricting access to the /pda/reportshop/record detail.php file until a patch is available. Avoid using the `repid` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tongda OA versions up to 11.10 **Description** A critical vulnerability was found in Tongda OA, affecting the file /pda/workflow/check seal.php. The manipulation of the `ID` argument leads to SQL injection. The attack can be initiated remotely. **Recommendations** For Tongda OA versions up to 11.10, consider restricting access to the /pda/workflow/check seal.php file until a patch is available. As a temporary workaround, avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tongda OA versions up to 11.9 **Description** A critical issue has been found in Tongda OA, affecting the file /pda/workflow/webSignSubmit.php. The manipulation of the `saleId` argument leads to SQL injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tongda OA versions up to 11.9, as a temporary workaround, consider restricting access to the `/pda/workflow/webSignSubmit.php` file until a patch is available. Avoid using the `saleId` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Tongda OA 2017 versions up to 11.10 **Description** A critical issue affects some unknown functionality of the file /general/approve center/query/list/input form/delete data attach.php. The manipulation of the `RUN ID` argument leads to SQL injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tongda OA 2017 versions up to 11.10, restrict access to the vulnerable file /general/approve center/query/list/input form/delete data attach.php to minimize the risk of exploitation. As a temporary workaround, consider restricting the use of the `RUN ID` parameter in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tongda OA 2017 up to 11.9 **Description** A critical issue affects some unknown functionality of the file /general/approve center/list/input form/data picker link.php. The manipulation of the `dataSrc` argument leads to sql injection. The attack may be launched remotely. **Recommendations** For Tongda OA 2017 up to 11.9, update to the latest patched version to mitigate risks. As a temporary workaround, consider restricting access to the vulnerable file /general/approve center/list/input form/data picker link.php until a patch is available. Avoid using the `dataSrc` argument in the affected functionality until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Tongda OA versions 2017 up to 11.10 **Description** A critical issue has been found in Tongda OA, affecting an unknown functionality of the file /general/address/private/address/query/delete.php. The manipulation of the `where repeat` argument leads to SQL injection. The attack can be launched remotely. **Recommendations** For Tongda OA versions 2017 up to 11.10, update to a version that is not affected by this issue. As a temporary workaround, consider restricting access to the /general/address/private/address/query/delete.php file until a patch is available. Avoid using the `where repeat` argument in the affected file until the issue is resolved.