25 matches found
EUVD-2024-49829
Malicious code in bioql PyPI...
EUVD-2024-51037
Malicious code in bioql PyPI...
CVE-2024-9279
A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6. This affects an unknown part of the file /mee/index of the component User Center. The manipulation of the argument User Nickname leads to cross site scripting. It is possible to initiate the attack...
CVE-2024-12663
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...
CVE-2023-42280
mee-admin 1.5 is vulnerable to Directory Traversal. The download method in the CommonFileController.java file does not verify the incoming data, resulting in arbitrary file reading...
CVE-2024-12663
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...
CVE-2024-12663
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...
CVE-2024-12663 funnyzpc Mee-Admin Login login observable response discrepancy
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...
CVE-2024-12663
The CVE-2024-12663 entry affects funnyzpc Mee-Admin up to 1.6. A vulnerability exists in the Login component, specifically the file /mee/login, where manipulating the username argument leads to observable response discrepancies. Exploitation can be attempted remotely, with high attack complexity....
CVE-2024-12663 funnyzpc Mee-Admin Login login observable response discrepancy
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...
mee-admin 安全漏洞
mee-admin is an open source backend management system by funnyzpc individual developers. A security vulnerability exists in mee-admin versions prior to 1.6, which stems from the parameter username in the file /mee/login causing observable response differences...
CVE-2024-9279
A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6. This affects an unknown part of the file /mee/index of the component User Center. The manipulation of the argument User Nickname leads to cross site scripting. It is possible to initiate the attack...
CVE-2024-9279
A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6. This affects an unknown part of the file /mee/index of the component User Center. The manipulation of the argument User Nickname leads to cross site scripting. It is possible to initiate the attack...
CVE-2024-9279 funnyzpc Mee-Admin User Center index cross site scripting
A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6. This affects an unknown part of the file /mee/index of the component User Center. The manipulation of the argument User Nickname leads to cross site scripting. It is possible to initiate the attack...
CVE-2024-9279
The CVE-2024-9279 entry affects funnyzpc Mee-Admin up to 1.6, with a cross-site scripting flaw in the User Center’s /mee/index caused by manipulating the User Nickname parameter. The vulnerability is exploitable remotely; the exploit has been disclosed publicly and vendor response is not document...
mee-admin 跨站脚本漏洞
mee-admin is an open source backend management system by funnyzpc individual developers. A cross-site scripting vulnerability exists in mee-admin versions prior to 1.6, which stems from the parameter User Nickname in the file /mee/index that can lead to cross-site scripting...
PT-2024-39537 · Unknown · Funnyzpc Mee-Admin
Name of the Vulnerable Software and Affected Versions: funnyzpc Mee-Admin versions up to 1.6 Description: A problematic issue was found in the User Center component, affecting an unknown part of the file /mee/index. The manipulation of the User Nickname argument leads to cross-site scripting. Thi...
CVE-2023-42280
mee-admin 1.5 is vulnerable to Directory Traversal. The download method in the CommonFileController.java file does not verify the incoming data, resulting in arbitrary file reading...
CVE-2023-42280
mee-admin 1.5 is vulnerable to Directory Traversal. The download method in the CommonFileController.java file does not verify the incoming data, resulting in arbitrary file reading...
CVE-2023-42280
mee-admin 1.5 is vulnerable to Directory Traversal. The download method in the CommonFileController.java file does not verify the incoming data, resulting in arbitrary file reading...