Mida eFramework 漏洞列表

共找到 5 个与 Mida eFramework 相关的漏洞

📅 加载漏洞趋势中...

CVE-2020-15920: Mida eFramework <=2.9.0 - Remote Command Execution POC

日期: 2025-08-01 | 影响软件: Mida eFramework

Mida eFramework through 2.9.0 allows an attacker to achieve remote code execution with administrative (root) privileges. No authentication is required.
CVE-2020-15920: Mida eFramework <=2.9.0 - Remote Command Execution POC

日期: 2025-08-01 | 影响软件: Mida eFramework

Mida eFramework through 2.9.0 allows an attacker to achieve remote code execution with administrative (root) privileges. No authentication is required.
mida-eframework-xss: Mida eFramework - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Mida eFramework

Mida eFramework contains a cross-site scripting vulnerability. An attacker can execute arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Mida eFramework任意文件读取漏洞无POC

日期: 2021-11-15 | 影响软件: Mida eFramework

Mida eFramework /PDC/download.php存在任意文件读取漏洞，攻击者可通过该漏洞获取敏感信息。
Mida eFramework未授权远程命令执行漏洞(CVE-2020-15920) 无POC

日期: 2021-11-15 | 影响软件: Mida eFramework

Mida eFramework到2.9.0版本中存在操作系统命令注入，允许攻击者以管理（root）权限实现远程代码执行（RCE）。