CVE-2025-4535

A vulnerability, which was classified as problematic, was found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 4.0. Affected is an unknown function of the file /config/config.properties of the component Configuration File Handler. The manipulation leads to information...

CVE-2025-4535

The CVE refers to Gosuncn Technology Group Audio-Visual Integrated Management Platform 4.0, specifically the Configuration File Handler component. Affected is the /config/config.properties file, where manipulation leads to information disclosure. The flaw is exploitable remotely; public exploits ...

CVE-2025-4529

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. It has been classified as problematic. Affected is the function Download of the file...

CVE-2025-4529

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. It has been classified as problematic. Affected is the function Download of the file...

CVE-2025-4529 Seeyon Zhiyuan OA Web Application System ZIP File M3CoreController.class download path traversal

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. It has been classified as problematic. Affected is the function Download of the file...

CVE-2025-4529 Seeyon Zhiyuan OA Web Application System ZIP File M3CoreController.class download path traversal

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. It has been classified as problematic. Affected is the function Download of the file...

PT-2025-20667 · Unknown · Ctcms Content Management System

Name of the Vulnerable Software and Affected Versions: CTCMS Content Management System version 2.1.2 Description: A critical issue was found in the function del of the file ctcmsappscontrollersadminTpl.php of the component File Handler. The manipulation of the argument File leads to path traversa...

PT-2025-20657 · Gosuncn Technology · Gosuncn Technology Group Audio-Visual Integrated Management Platform

Name of the Vulnerable Software and Affected Versions: Gosuncn Technology Group Audio-Visual Integrated Management Platform version 4.0 Description: A problematic issue was found in the Configuration File Handler component, specifically in the /config/config.properties file, leading to informatio...

CVE-2025-3568

A vulnerability has been found in Webkul Krayin CRM up to 2.1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/settings/users/edit/ of the component SVG File Handler. The manipulation leads to cross site scripting. The attack can be...

CVE-2025-3588

CVE-2025-3588 affects joelittlejohn jsonschema2pojo v1.2.2, specifically the apply function in org/jsonschema2pojo/rules/SchemaRule.java. The issue is a stack-based buffer overflow with local access required. The exploit has been publicly disclosed and vendor response is unavailable. Public mitig...

CVE-2025-3588 joelittlejohn jsonschema2pojo JSON File SchemaRule.java apply stack-based overflow

A vulnerability, which was classified as problematic, has been found in joelittlejohn jsonschema2pojo 1.2.2. This issue affects the function apply of the file org/jsonschema2pojo/rules/SchemaRule.java of the component JSON File Handler. The manipulation leads to stack-based buffer overflow...

CVE-2025-3588 joelittlejohn jsonschema2pojo JSON File SchemaRule.java apply stack-based overflow

A vulnerability, which was classified as problematic, has been found in joelittlejohn jsonschema2pojo 1.2.2. This issue affects the function apply of the file org/jsonschema2pojo/rules/SchemaRule.java of the component JSON File Handler. The manipulation leads to stack-based buffer overflow...

CVE-2025-3568

A vulnerability has been found in Webkul Krayin CRM up to 2.1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/settings/users/edit/ of the component SVG File Handler. The manipulation leads to cross site scripting. The attack can be...

CVE-2025-3568

A vulnerability has been found in Webkul Krayin CRM up to 2.1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/settings/users/edit/ of the component SVG File Handler. The manipulation leads to cross site scripting. The attack can be...

CVE-2025-3568

CVE-2025-3568 affects Webkul Krayin CRM

CVE-2025-3568 Webkul Krayin CRM SVG File edit cross site scripting

A vulnerability has been found in Webkul Krayin CRM up to 2.1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/settings/users/edit/ of the component SVG File Handler. The manipulation leads to cross site scripting. The attack can be...

UBUNTU-CVE-2025-3548

A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp up to 5.4.3. This issue affects the function aiString::Set in the library include/assimp/types.h of the component File Handler. The manipulation leads to heap-based buffer overflow. It is possibl...

CVE-2025-3549

CVE-2025-3549 affects Open Asset Import Library Assimp 5.4.3. The vulnerability is in Assimp::MD3Importer::ValidateSurfaceHeaderOffsets (MD3Loader.cpp, File Handler) and causes a heap-based buffer overflow. The issue requires local access to exploit, and the exploit has been disclosed publicly. C...

PT-2025-16218

Name of the Vulnerable Software and Affected Versions: Webkul Krayin CRM versions up to 2.1.0 Description: A vulnerability has been found in the SVG File Handler component of Webkul Krayin CRM, affecting an unknown functionality of the file /admin/settings/users/edit/. The manipulation leads to...

OESA-2025-1405 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability classified as critic...