Shodan
Vulnerabilities
Vulnerable Software
Luckyframe:  >> Luckyframeweb  Security Vulnerabilities
CVE-2024-35081
LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary file deletion vulnerability via the fileName parameter in the fileDownload method.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-05-23
CVE-2024-33118
LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary read vulnerability via the fileDownload method in class com.luckyframe.project.common.CommonController.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-05-06
CVE-2023-24221
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/DeptMapper.xml.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-02-17
CVE-2023-24219
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-02-17
CVE-2023-24220
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/RoleMapper.xml.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-02-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved