Filtered by vendor Luckyframe
Subscriptions
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-33118 | 1 Luckyframe | 1 Luckyframeweb | 2024-11-21 | 7.5 High |
LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary read vulnerability via the fileDownload method in class com.luckyframe.project.common.CommonController. | ||||
CVE-2023-24221 | 1 Luckyframe | 1 Luckyframeweb | 2024-11-21 | 9.8 Critical |
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/DeptMapper.xml. | ||||
CVE-2023-24220 | 1 Luckyframe | 1 Luckyframeweb | 2024-11-21 | 9.8 Critical |
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/RoleMapper.xml. | ||||
CVE-2023-24219 | 1 Luckyframe | 1 Luckyframeweb | 2024-11-21 | 9.8 Critical |
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml. |
Page 1 of 1.