Lucene search
K

EUVD-2025-18961

๐Ÿ—“๏ธย 03 Oct 2025ย 20:07:09Reported byย EUVDTypeย 
euvd
ย euvd
๐Ÿ”—ย euvd.enisa.europa.eu๐Ÿ‘ย 3ย Views

Critical vulnerability in xxyopen/201206030 allows remote authentication bypass via ajaxLogin function

Related
Affected
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2025-6533
24 Jun 202500:46
โ€“circl
CNNVD
novel-plus ๅฎ‰ๅ…จๆผๆดž
23 Jun 202500:00
โ€“cnnvd
CVE
CVE-2025-6533
24 Jun 202500:00
โ€“cve
Cvelist
CVE-2025-6533 xxyopen/201206030 novel-plus CATCHA LoginController.java ajaxLogin authentication replay
24 Jun 202500:00
โ€“cvelist
NVD
CVE-2025-6533
24 Jun 202500:15
โ€“nvd
Positive Technologies
PT-2025-26656 ยท Unknown ยท Novel-Plus
24 Jun 202500:00
โ€“ptsecurity
RedhatCVE
CVE-2025-6533
26 Jun 202500:37
โ€“redhatcve
Vulnrichment
CVE-2025-6533 xxyopen/201206030 novel-plus CATCHA LoginController.java ajaxLogin authentication replay
24 Jun 202500:00
โ€“vulnrichment
[
  {
    "enisaIdVendor": [
      {
        "id": "1b34c3a6-528a-3a36-aa81-51820fd23013",
        "vendor": {
          "name": "xxyopen"
        }
      },
      {
        "id": "26d78b8d-92a2-3309-a967-5156f95fe788",
        "vendor": {
          "name": "201206030"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2c6878df-b9c4-32c2-ba2f-21b6c3c8f8e0",
        "product": {
          "name": "Novel-Plus"
        },
        "product_version": "5.1.2"
      },
      {
        "id": "4437a979-469f-3f29-858f-96bd67263c87",
        "product": {
          "name": "Novel-Plus"
        },
        "product_version": "5.1.1"
      },
      {
        "id": "4aa9d078-e22f-3d81-9e72-d2c375f64be3",
        "product": {
          "name": "Novel-Plus"
        },
        "product_version": "5.1.0"
      },
      {
        "id": "75031e92-de72-3290-8a13-e897379de7fb",
        "product": {
          "name": "Novel-Plus"
        },
        "product_version": "5.1.3"
      }
    ]
  }
]

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

03 Oct 2025 20:07Current
5.8Medium risk
Vulners AI Score5.8
CVSS 46.3
CVSS 3.15.6 - 5.9
CVSS 25.1
CVSS 35.6
EPSS0.00474
SSVC
3