← Back

6shr System

6shr_system

Vendor: 6shr System Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-8330
16shr System Project
16shr System
Sep 5, 2024
Aug 30, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
6SHR system from Gether Technology does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload web shell scripts and use them to execute arbitrary system commands on the se...Show more
6SHR system from Gether Technology does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload web shell scripts and use them to execute arbitrary system commands on the server.Show less
CVE-2024-8329
16shr System Project
16shr System
Sep 5, 2024
Aug 30, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
6SHR system from Gether Technology does not properly validate the specific page parameter, allowing remote attackers with regular privilege to inject SQL command to read, modify, and delete database contents.