Categoria: CVE

A vulnerability, which was classified as critical, has been found in shanyu SyCms up to a242ef2d194e8bb249dc175e7c49f2c1673ec921. This issue affects the function addPost of the file...

A vulnerability classified as critical was found in ChenJinchuang Lin-CMS-TP5 up to 0.3.3. This vulnerability affects the function Upload of the file application/lib/file/LocalUploader.php of the component File Upload Handler....

A vulnerability classified as problematic has been found in ZKTeco BioTime up to 9.0.3/9.0.4/9.5.2. This affects an unknown part of the file /base/safe_setting/ of the component Endpoint. Performing manipulation of the argument...

A vulnerability described as critical has been identified in FantasticLBP Hotels_Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. Affected by this issue is some unknown functionality of the file /controller/api/Room.php....

A vulnerability marked as problematic has been reported in JeecgBoot up to 3.9.0. Affected by this vulnerability is the function getPositionUserList of the file /sys/position/getPositionUserList. This manipulation of the...

A vulnerability, which was classified as critical, was found in Dromara Sa-Token up to 1.44.0. This affects the function ObjectInputStream.readObject of the file SaJdkSerializer.java. Executing manipulation can lead to...

A vulnerability, which was classified as critical, has been found in OpenCart up to 4.1.0.3. Affected by this issue is some unknown functionality of the component Single-Use Coupon Handler. Performing manipulation results in...

A vulnerability classified as problematic was found in n8n up to 1.113.x. Affected by this vulnerability is an unknown functionality of the component Respond to Webhook Node. Such manipulation leads to cross site scripting. This...

A vulnerability classified as problematic has been found in SiYuan up to 3.5.1. Affected is an unknown function. This manipulation causes use of hard-coded cryptographic key . This vulnerability is handled as CVE-2025-68948. It...

A vulnerability described as problematic has been identified in abhinavxd libredesk up to 0.8.5. This impacts an unknown function of the file /api/v1/contacts/{id}/notes. The manipulation results in cross site scripting. This...

A vulnerability, which was classified as critical, was found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. Affected is the function Upload of the file Admin/Home/Controller/ProductImageController.class.php of the...

A vulnerability, which was classified as critical, has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. This impacts an unknown function of the file...