Login
| Title | Size | Downloads |
|---|---|---|
| V7-WAF-1.0.41.dat | 2.23 MB |
Version number
V7-WAF-1.0.41
MD5 number
f28c2eaa7fe6794da329047c1c1ebf9e
Update time
2025-07-23
Update attack list
Key new rules:
------------------------------
49686 Epro_OA_getPosition_SQL_Injection_Vulnerability
---- Category: Vulnerability
---- Description:
---- An SQL injection vulnerability has been reported in Epro OA. The vulnerability is due to improper validation of user input by the getPosition interface. A remote attacker could exploit this vulnerability by sending crafted requests. Successful exploitation could allow an attacker to execute arbitrary SQL statements on the target database.
49702 Weaver_E-bridge_mawfileUpload_Arbitrary_File_Upload_Vulnerability
---- Category: Vulnerability
---- Description:
---- Ebridg maw/fileUpload interface has file upload vulnerability. Attackers can upload any file, execute malicious commands, and obtain system permission.
49706 Yonyou_U8Cloud_hrta_returnleave_SQL_Injection_Vulnerability
---- Category: Vulnerability
---- Description:
---- There is an SQL injection vulnerability in the Yonyou U8cloud hrta.returneave interface. Remote attackers can exploit this vulnerability to inject and execute malicious SQL statements, thereby extracting sensitive information from the database.
49707 Jinhe_OA_jc6_GetFileContent_Arbitrary_File_Read_Vulnerability
---- Category: Vulnerability
---- Description:
---- An arbitrary file read vulnerability exists in the GetFileContent interface of the Jinhe JC6 Collaborative Management Platform, which can be exploited by an attacker to obtain sensitive server information.
