PT-2025-41239

Name of the Vulnerable Software and Affected Versions JhumanJ OpnForm versions up to 1.9.3 Description A weakness exists in JhumanJ OpnForm, potentially leading to information exposure. The issue stems from a discrepancy within the Forgotten Password Handler component, specifically related to the...

EUVD-2024-32265

Malicious code in bioql PyPI...

EUVD-2024-47322

Malicious code in bioql PyPI...

EUVD-2025-2125

Malicious code in bioql PyPI...

EUVD-2025-1993

Malicious code in bioql PyPI...

EUVD-2025-10027

Malicious code in bioql PyPI...

EUVD-2025-11470

Malicious code in bioql PyPI...

EUVD-2023-0765

Malicious code in bioql PyPI...

EUVD-2025-2127

Malicious code in bioql PyPI...

EUVD-2023-24135

Malicious code in bioql PyPI...

EUVD-2025-29107

Malicious code in bioql PyPI...

CVE-2025-10389

A security flaw has been discovered in CRMEB up to 5.6.1. Impacted is the function Save of the file app/services/system/admin/SystemAdminServices.php of the component Administrator Password Handler. Performing manipulation of the argument ID results in improper authorization. The attack may be...

CVE-2025-10389

A security flaw has been discovered in CRMEB up to 5.6.1. Impacted is the function Save of the file app/services/system/admin/SystemAdminServices.php of the component Administrator Password Handler. Performing manipulation of the argument ID results in improper authorization. The attack may be...

PT-2025-37399

Name of the Vulnerable Software and Affected Versions: CRMEB versions up to 5.6.1 Description: A security flaw exists in CRMEB due to improper authorization when manipulating the ID argument within the Save function of the app/services/system/admin/SystemAdminServices.php file, specifically in th...

CRMEB 授权问题漏洞

CRMEB is a Java mall system of CRMEB open source. An authorization issue vulnerability exists in CRMEB 5.6.1 and earlier versions, which stems from incorrect manipulation of the parameter ID of the component Administrator Password Handler in the file...

Linux Distros Unpatched Vulnerability : CVE-2025-1369

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the...

PT-2025-27483 · D Link · D-Link Dcs-7517

Name of the Vulnerable Software and Affected Versions: D-Link DCS-7517 versions up to 2.02.0 Description: A vulnerability was found in the Qlync Password Generation Handler component, affecting the function g F n GenPassForQlync of the file /bin/httpd. The manipulation leads to the use of...

CVE-2025-6097

A vulnerability was found in UTT 进取 750W up to 5.0 and classified as critical. Affected by this issue is the function formDefineManagement of the file /goform/setSysAdm of the component Administrator Password Handler. The manipulation of the argument passwd1 leads to unverified password change. T...

CVE-2025-6097

A vulnerability was found in UTT 进取 750W up to 5.0 and classified as critical. Affected by this issue is the function formDefineManagement of the file /goform/setSysAdm of the component Administrator Password Handler. The manipulation of the argument passwd1 leads to unverified password change. T...

CVE-2025-6097 UTT 进取 750W Administrator Password setSysAdm formDefineManagement unverified password change

A vulnerability was found in UTT 进取 750W up to 5.0 and classified as critical. Affected by this issue is the function formDefineManagement of the file /goform/setSysAdm of the component Administrator Password Handler. The manipulation of the argument passwd1 leads to unverified password change. T...