'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

vul_app:sharepoint_workflows_xoml_injection_vul(Rule ID:1070210128)

Release Date2025/9/15

Rule NameCVE-2020-0646: SharePoint Workflows XOML Command Injection Vulnerability

Severity:critical

CVE IDCVE-2020-0646

 

Descripiton

Microsoft .NET Framework is a comprehensive and consistent programming model of Microsoft Corporation in the United States, and it is also a development platform for building applications for Windows, Windows Store, Windows Phone, Windows Server, and Microsoft Azure. The platform includes C # and Visual Basic programming languages, a common language runtime library, and an extensive class library. There is a remote code execution vulnerability in the Microsoft .NET Framework. The vulnerability stems from the program's inability to correctly verify input. An attacker can use the vulnerability to control the affected system by submitting input. The following products and versions are affected: Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.