24 matches found
EUVD-2025-18835
Malicious code in bioql PyPI...
EUVD-2025-9670
Malicious code in bioql PyPI...
EUVD-2025-9710
Malicious code in bioql PyPI...
CVE-2025-6466
A vulnerability was found in ageerle ruoyi-ai 2.0.0 and classified as critical. Affected by this issue is the function speechToTextTranscriptionsV2/upload of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/service/impl/SseServiceImpl.java. The manipulation of the argument File...
CVE-2025-6466
A vulnerability was found in ageerle ruoyi-ai 2.0.0 and classified as critical. Affected by this issue is the function speechToTextTranscriptionsV2/upload of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/service/impl/SseServiceImpl.java. The manipulation of the argument File...
CVE-2025-6466 ageerle ruoyi-ai SseServiceImpl.java upload unrestricted upload
A vulnerability was found in ageerle ruoyi-ai 2.0.0 and classified as critical. Affected by this issue is the function speechToTextTranscriptionsV2/upload of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/service/impl/SseServiceImpl.java. The manipulation of the argument File...
CVE-2025-6466
The CVE-2025-6466 issue affects ageerle ruoyi-ai 2.0.0, specifically the function speechToTextTranscriptionsV2/upload in ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/service/impl/SseServiceImpl.java. The root cause is improper handling/manipulation of the File argument, which leads t...
PT-2025-26544 · Ruoyi-Ai · Ruoyi-Ai
Name of the Vulnerable Software and Affected Versions: ageerle ruoyi-ai version 2.0.0 Description: A critical issue was found in the function speechToTextTranscriptionsV2/upload of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/service/impl/SseServiceImpl.java. The manipulatio...
RuoYi AI 代码问题漏洞
RuoYi AI is a full-stack AI development platform for ageerle individual developers, designed to help developers rapidly build and deploy personalized AI applications. A code issue vulnerability exists in RuoYi AI version 2.0.0, which stems from an incorrect operation of the parameter File leading...
CVE-2025-3202
A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible...
CVE-2025-3199
A vulnerability was found in ageerle ruoyi-ai up to 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java of the component API Interface. The manipulati...
CVE-2025-3202
A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible...
CVE-2025-3202 ageerle ruoyi-ai SysNoticeController.java improper authorization
A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible...
CVE-2025-3202
The CVE-2025-3202 affects ageerle ruoyi-ai up to version 2.0.0. The vulnerability is in an unknown function within SysNoticeController.java under ruoyi-system and causes improper authorization, exposing remote exploitation. Public exploit availability is indicated, and upgrading to version 2.0.1 ...
CVE-2025-3202 ageerle ruoyi-ai SysNoticeController.java improper authorization
A vulnerability classified as critical has been found in ageerle ruoyi-ai up to 2.0.0. Affected is an unknown function of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysNoticeController.java. The manipulation leads to improper authorization. It is possible...
CVE-2025-3199
A vulnerability was found in ageerle ruoyi-ai up to 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java of the component API Interface. The manipulati...
CVE-2025-3199
A vulnerability was found in ageerle ruoyi-ai up to 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java of the component API Interface. The manipulati...
CVE-2025-3199 ageerle ruoyi-ai API Interface SysModelController.java improper authorization
A vulnerability was found in ageerle ruoyi-ai up to 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java of the component API Interface. The manipulati...
CVE-2025-3199 ageerle ruoyi-ai API Interface SysModelController.java improper authorization
A vulnerability was found in ageerle ruoyi-ai up to 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java of the component API Interface. The manipulati...
CVE-2025-3199
The CVE refers to ageerle ruoyi-ai up to 2.0.1 with a vulnerability in the API Interface component (SysModelController.java) that leads to improper authorization. Exploitation is described as remotely feasible, and public disclosures exist. A fix is available in version 2.0.2; applying the patch ...