CNNVD-202508-780 Information
CNNVD ID
CNNVD-202508-780
Related CVE
- CNNVD Published: 2025-08-08
Description (Chinese)
Cyclope Employee Surveillance Solution是Cyclope公司的一个员工监控软件。 Cyclope Employee Surveillance Solution 6.x版本存在安全漏洞,该漏洞源于auth-login请求中username参数未清理,可能导致SQL注入和远程代码执行。
Description (English)
Cyclope Employee Survellance Solution is an employee control software for the company Cyclope. Cyclope Employee Survellance 6.x version has a security loophole, which stems from the fact that the username parameter in the mouth-login request has not been cleared, which may lead to SQL injection and remote code execution.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Cyclope
Published
2025-08-08
Last Modified
2026-02-24
References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ https://www.cyclope-series.com/ https://www.exploit-db.com/exploits/20393 https://www.exploit-db.com/exploits/20501 https://www.vulncheck.com/advisories/cyclope-employee-surveillance-solution-sql-injection https://access.redhat.com/security/cve/cve-2012-10047
Share on: