mall 代码问题漏洞

mall is a macro individual developer of a set of e-commerce system, including the front mall system and backend management system. A code issue vulnerability exists in mall 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 and prior versions, which stems from an incorrect operation of the function in the...

WordPress plugin Geo Controller 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

PT-2026-1300

Name of the Vulnerable Software and Affected Versions Silicon Labs Z-Wave Protocol Controller affected versions not specified Description An integer underflow condition exists in the Silicon Labs Z-Wave Protocol Controller, potentially leading to out-of-bounds memory reads. This occurs due to an...

Silicon Labs Z-Wave Protocol Controller 安全漏洞

Silicon Labs Z-Wave Protocol Controller is an IoT gateway middleware from Silicon Labs, USA. A security vulnerability exists in Silicon Labs Z-Wave Protocol Controller that originates from an integer underflow that could result in an out-of-bounds memory read...

PT-2026-1200

Name of the Vulnerable Software and Affected Versions JavaMall versions prior to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 Description A flaw exists in JavaMall that allows for unrestricted file uploads. This issue impacts the Upload function within the file...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from an unset error code in the mchpeicdomainalloc function in the mchp-eic interrupt controller driver, whi...

PT-2026-1281

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in INTINITUM FORM Geo Controller allows DOM-Based XSS.This issue affects Geo Controller: from n/a through 8.5.2...

mall 路径遍历漏洞

mall is a macro individual developer of a set of e-commerce system, including the front mall system and backend management system. mall 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 and previous versions of the path traversal vulnerability exists, the vulnerability stems from the file...

CVE-2026-0574

A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function saveUserRole of the file warehouse\src\main\java\com\yeqifu\sys\controller\UserController.java of the component Request Handler. This manipulation causes improper...

EUVD-2026-0783

A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function saveUserRole of the file warehouse\src\main\java\com\yeqifu\sys\controller\UserController.java of the component Request Handler. This manipulation causes improper...

CVE-2025-64124

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: before 2.5.1...

warehouse 授权问题漏洞

warehouse is a spring boot based logistics management system for small and medium-sized warehouses by yeqifu individual developers. There is an authorization issue vulnerability in warehouse, which originates from improper authorization of the function saveUserRole in the file...

CVE-2025-64120

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...

CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

CVE-2025-64123

Unintended Proxy or Intermediary vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Network Boundary Bridging.This issue affects Multi-Stack Controller MSC: through and including release 2.5.1...

CVE-2025-64121

Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...

CVE-2025-15432

A vulnerability has been found in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. This vulnerability affects the function downloadShowFile of the file /file/downloadShowFile.action of the component com.yeqifu.sys.controller.FileController. The manipulation of the argument path...

CVE-2025-64124

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: before 2.5.1...

CVE-2025-64124

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: before 2.5.1...

EUVD-2025-206224

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...