Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/11/17 12:1 p.m.3 views

CVE-2025-13249

A security vulnerability has been detected in Jiusi OA up to 20251102. This affects an unknown function of the file /OfficeServer?isAjaxDownloadTemplate=false of the component OfficeServer Interface. Such manipulation of the argument FileData leads to unrestricted upload. The attack can be launch...

6.5CVSS6.3AI score0.00039EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/16 12:30 p.m.3 views

EUVD-2025-197726

A security vulnerability has been detected in Jiusi OA up to 20251102. This affects an unknown function of the file /OfficeServer?isAjaxDownloadTemplate=false of the component OfficeServer Interface. Such manipulation of the argument FileData leads to unrestricted upload. The attack can be launch...

6.5CVSS6.3AI score0.00039EPSS
Exploits0References5
NVD
NVDadded 2025/11/16 12:15 p.m.3 views

CVE-2025-13249

A security vulnerability has been detected in Jiusi OA up to 20251102. This affects an unknown function of the file /OfficeServer?isAjaxDownloadTemplate=false of the component OfficeServer Interface. Such manipulation of the argument FileData leads to unrestricted upload. The attack can be launch...

6.5CVSS0.00039EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/11/16 11:32 a.m.6 views

CVE-2025-13249 Jiusi OA OfficeServer unrestricted upload

A security vulnerability has been detected in Jiusi OA up to 20251102. This affects an unknown function of the file /OfficeServer?isAjaxDownloadTemplate=false of the component OfficeServer Interface. Such manipulation of the argument FileData leads to unrestricted upload. The attack can be launch...

6.5CVSS0.00039EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/11/16 12:0 a.m.1 views

Jiusi OA 代码问题漏洞

Jiusi OA is a collaborative office system from China Jiusi Jiusi. A code issue vulnerability exists in Jiusi OA 20251102 and prior versions, which stems from an incorrect manipulation of the parameter FileData in File/OfficeServer, which can lead to unlimited uploads...

6.5CVSS6.5AI score0.00039EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/09/11 2:2 p.m.1 views

CVE-2025-10253 openDCIM SVG File uploadifive.php cross site scripting

A vulnerability has been found in openDCIM 23.04. This vulnerability affects unknown code of the file /scripts/uploadifive.php of the component SVG File Handler. Such manipulation of the argument Filedata leads to cross site scripting. The attack can be launched remotely. The exploit has been...

5.1CVSS5.4AI score0.00042EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/09/11 12:0 a.m.2 views

PT-2025-37185

A vulnerability has been found in openDCIM 23.04. This vulnerability affects unknown code of the file /scripts/uploadifive.php of the component SVG File Handler. Such manipulation of the argument Filedata leads to cross site scripting. The attack can be launched remotely. The exploit has been...

5.1CVSS5.5AI score0.00042EPSS
Exploits0References5
NVD
NVDadded 2023/07/20 10:15 p.m.8 views

CVE-2023-3797

A vulnerability, which was classified as critical, was found in Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System up to 20230712. This affects an unknown part of the file /Duty/AjaxHandle/UploadFloodPlanFileUpdate.ashx. The manipulation of...

8.8CVSS6.4AI score0.00114EPSS
Exploits1References3
Rows per page
Query Builder