|
3061
|
- |
|
-
|
-
|
A vulnerability was found in liujianview gymxmjpa 1.0. It has been classified as critical. Affected is the function SubjectDaoImpl of the file src/main/java/com/liujian/gymxmjpa/controller/SubjectCon…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0406
|
2025-01-13 11:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3062
|
- |
|
-
|
-
|
A vulnerability was found in liujianview gymxmjpa 1.0 and classified as critical. This issue affects the function GoodsDaoImpl of the file src/main/java/com/liujian/gymxmjpa/controller/GoodsControlle…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0405
|
2025-01-13 10:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3063
|
- |
|
-
|
-
|
A vulnerability has been found in liujianview gymxmjpa 1.0 and classified as critical. This vulnerability affects the function CoachController of the file src/main/java/com/liujian/gymxmjpa/controlle…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0404
|
2025-01-13 10:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3064
|
- |
|
-
|
-
|
A vulnerability, which was classified as problematic, has been found in 1902756969 reggie 1.0. Affected by this issue is some unknown functionality of the file /user/sendMsg of the component Phone Nu…
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2025-0403
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3065
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in 1902756969 reggie 1.0. Affected by this vulnerability is the function upload of the file src/main/java/com/itheima/reggie/controller/CommonControll…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2025-0402
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3066
|
- |
|
-
|
-
|
A vulnerability classified as critical has been found in 1902756969 reggie 1.0. Affected is the function download of the file src/main/java/com/itheima/reggie/controller/CommonController.java. The ma…
|
CWE-22
Path Traversal
|
CVE-2025-0401
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3067
|
- |
|
-
|
-
|
A vulnerability was found in StarSea99 starsea-mall 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/categories/update. The manipulation of the arg…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2025-0400
|
2025-01-13 08:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3068
|
- |
|
-
|
-
|
A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This vulnerability affects the function UploadController of the file src/main/java/com/siro/mall/controller/…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2025-0399
|
2025-01-13 08:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3069
|
- |
|
-
|
-
|
HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. The application transmits sensitive or security-critical data in cleartext in a communication channel t…
|
-
|
CVE-2024-42181
|
2025-01-13 07:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3070
|
- |
|
-
|
-
|
HCL MyXalytics is affected by a malicious file upload vulnerability. The application accepts invalid file uploads, including incorrect content types, double extensions, null bytes, and special chara…
|
-
|
CVE-2024-42180
|
2025-01-13 07:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
