Categoria: CVE

A vulnerability, which was classified as critical, was found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. Affected is the function Upload of the file Admin/Home/Controller/ProductImageController.class.php of the...

A vulnerability, which was classified as critical, has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. This impacts an unknown function of the file...

A vulnerability classified as problematic was found in PandaXGO PandaX up to fb8ff40f7ce5dfebdf66306c6d85625061faf7e5. This affects an unknown function of the file config.yml of the component JWT Secret Handler. The manipulation...

A vulnerability classified as problematic has been found in actiontech sqle up to 4.2511.0. The impacted element is an unknown function of the file sqle/utils/jwt.go of the component JWT Secret Handler. The manipulation of the...

A vulnerability described as critical has been identified in getmaxun maxun up to 0.0.28. The affected element is the function router.get of the file server/src/routes/auth.ts of the component Authentication Endpoint. Executing...

A vulnerability marked as critical has been reported in getmaxun maxun up to 0.0.28. Impacted is an unknown function of the file /getmaxun/maxun/blob/develop/server/src/routes/auth.ts. Performing manipulation of the argument...

A vulnerability labeled as critical has been found in InternLM LMDeploy up to 0.11.0. This issue affects the function torch.load. Such manipulation leads to deserialization. This vulnerability is traded as CVE-2025-67729. The...

A vulnerability identified as problematic has been detected in Terra Informatica Sciter 4.4.7.0. This vulnerability affects unknown code of the component Video Rendering. This manipulation causes information disclosure. This...

A vulnerability categorized as problematic has been discovered in Croogo CMS 4.0.7. This affects an unknown part. The manipulation of the argument edit-file results in path traversal. This vulnerability is reported as...

A vulnerability was found in Cola Dnslog 1.3.2 and classified as critical. This impacts the function os.path.join of the component TXT Record Handler. Such manipulation leads to path traversal. This vulnerability is listed as...

A vulnerability has been found in Comtech EF Data CDM-625 and EF Data CDM-625A 2.5.1 and classified as critical. This affects an unknown function of the file /Forms/admin_access_1 of the component HTTP POST Request Handler. This...

A vulnerability, which was classified as critical, was found in Yealink T21P_E2 Phone 52.84.0.15. The impacted element is an unknown function of the component Diagnostic. The manipulation results in path traversal. This...