|
4041
|
- |
|
-
|
-
|
A vulnerability, which was classified as problematic, has been found in 1902756969 reggie 1.0. Affected by this issue is some unknown functionality of the file /user/sendMsg of the component Phone Nu…
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2025-0403
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4042
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in 1902756969 reggie 1.0. Affected by this vulnerability is the function upload of the file src/main/java/com/itheima/reggie/controller/CommonControll…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2025-0402
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4043
|
- |
|
-
|
-
|
A vulnerability classified as critical has been found in 1902756969 reggie 1.0. Affected is the function download of the file src/main/java/com/itheima/reggie/controller/CommonController.java. The ma…
|
CWE-22
Path Traversal
|
CVE-2025-0401
|
2025-01-13 09:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4044
|
- |
|
-
|
-
|
A vulnerability was found in StarSea99 starsea-mall 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/categories/update. The manipulation of the arg…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2025-0400
|
2025-01-13 08:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4045
|
- |
|
-
|
-
|
A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This vulnerability affects the function UploadController of the file src/main/java/com/siro/mall/controller/…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2025-0399
|
2025-01-13 08:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4046
|
- |
|
-
|
-
|
HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. The application transmits sensitive or security-critical data in cleartext in a communication channel t…
|
-
|
CVE-2024-42181
|
2025-01-13 07:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4047
|
- |
|
-
|
-
|
HCL MyXalytics is affected by a malicious file upload vulnerability. The application accepts invalid file uploads, including incorrect content types, double extensions, null bytes, and special chara…
|
-
|
CVE-2024-42180
|
2025-01-13 07:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4048
|
- |
|
-
|
-
|
HCL MyXalytics is affected by sensitive information disclosure vulnerability. The HTTP response header exposes the Microsoft-HTTP API/2.0 as the server's name & version.
|
-
|
CVE-2024-42179
|
2025-01-13 07:15 |
2025-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4049
|
- |
|
-
|
-
|
A vulnerability has been found in longpi1 warehouse 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /resources/..;/inport/updateInport of the…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2025-0398
|
2025-01-12 23:15 |
2025-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4050
|
5.9 |
MEDIUM
Network
|
-
|
-
|
IBM Robotic Process Automation 21.0.0 through 21.0.7.19 and 23.0.0 through 23.0.19 could allow a remote attacker to obtain sensitive data that may be exposed through certain crypto-analytic attacks.
|
CWE-780
|
CVE-2024-51456
|
2025-01-12 23:15 |
2025-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
