Oaklouds Webbase 3.0
Approved changes feed: RSS · Atom
cpe:2.3:a:hgiga:oaklouds-webbase-3.0:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Hgiga (3395f64f-c7c9-5c57-a478-cf9fa807fa6c) |
|---|---|
| Product | Oaklouds Webbase 3.0 (026718bb-c6d5-5ed8-92fc-6b7339f7e487) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-26261 |
vulnerable | 2026-06-03 14:55:15.466562 |
Hgiga OAKlouds - Arbitrary File Read And Delete
CRITICAL (9.8)
The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded.
Published: 2024-02-15T02:29:23.672Z
Updated: 2024-08-02T00:07:19.038Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-26260 |
vulnerable | 2026-06-03 14:55:15.461701 |
Hgiga OAKlouds - Command Injection
CRITICAL (9.8)
The functionality for synchronization in HGiga OAKlouds' certain moudules has an OS Command Injection vulnerability, allowing remote attackers to inject system commands within specific request parameters. This enables the execution of arbitrary code on the remote server without permission.
Published: 2024-02-15T02:18:34.668Z
Updated: 2024-08-21T15:28:01.013Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.