CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/10/27 7:16 p.m.•0 views

CVE-2025-12305

9.8CVSS5.4AI score0.00065EPSS

NVD•added 2025/10/27 7:16 p.m.•6 views

CVE-2025-12305

9.8CVSS0.00065EPSS

Cvelist•added 2025/10/27 6:32 p.m.•7 views

CVE-2025-12305 quequnlong shiyi-blog Job SysJobController.java deserialization

6.5CVSS0.00065EPSS

CVE•added 2025/10/27 6:32 p.m.•7 views

CVE-2025-12305

The CVE-2025-12305 issue affects quequnlong shiyi-blog up to version 1.2.1, specifically the Job Handler component and the SysJobController.java file. The vulnerability is a deserialization flaw that can be triggered remotely, with an exploit publicly available. Affected software: quequnlong shiy...

9.8CVSS6.4AI score0.00065EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/27 6:32 p.m.•2 views

EUVD-2025-36333

6.5CVSS6.2AI score0.00065EPSS

Vulnrichment•added 2025/10/27 6:32 p.m.•2 views

CVE-2025-12305 quequnlong shiyi-blog Job SysJobController.java deserialization

6.5CVSS6.2AI score0.00065EPSS

Positive Technologies•added 2025/10/27 12:0 a.m.•3 views

PT-2025-44008

Name of the Vulnerable Software and Affected Versions quequnlong shiyi-blog versions up to 1.2.1 Description A flaw exists in the Job Handler component of quequnlong shiyi-blog. The issue involves deserialization within an unknown function of the file...

9.8CVSS6AI score0.00065EPSS

Exploits1References7

CNNVD•added 2025/10/27 12:0 a.m.•4 views

shiyi-blog 代码问题漏洞

shiyi-blog is a vue+springboot front-end and back-end separated blog system by bule individual developer. A code issue vulnerability exists in shiyi-blog 1.2.1 and earlier versions, which originates from a deserialization issue in the Job Handler component in the file...

9.8CVSS6.6AI score0.00065EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-16753

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00837EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-16765

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00162EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-16773

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00803EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-16772

Malicious code in bioql PyPI...

7.5CVSS5.6AI score0.00227EPSS

RedhatCVE•added 2025/06/05 6:5 p.m.•4 views

CVE-2025-5513

A vulnerability has been found in quequnlong shiyi-blog up to 1.2.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/api/comment/add. The manipulation of the argument content leads to cross site scripting. The attack can be launched...

5.1CVSS6AI score0.00162EPSS

RedhatCVE•added 2025/06/05 5:8 p.m.•10 views

CVE-2025-5511

A vulnerability, which was classified as critical, has been found in quequnlong shiyi-blog up to 1.2.1. This issue affects some unknown processing of the file /dev api/app/album/photos/. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been...

6.9CVSS6.8AI score0.00227EPSS

RedhatCVE•added 2025/06/05 5:8 p.m.•11 views

CVE-2025-5510

A vulnerability classified as critical was found in quequnlong shiyi-blog up to 1.2.1. This vulnerability affects unknown code of the file /app/sys/article/optimize. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has be...

9.8CVSS7AI score0.00309EPSS

RedhatCVE•added 2025/06/05 4:12 p.m.•11 views

CVE-2025-5509

A vulnerability classified as critical has been found in quequnlong shiyi-blog up to 1.2.1. This affects an unknown part of the file /api/file/upload. The manipulation of the argument file/source leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclos...

9.8CVSS6.8AI score0.00837EPSS

NVD•added 2025/06/03 6:15 p.m.•6 views

CVE-2025-5513

5.4CVSS0.00162EPSS

OSV•added 2025/06/03 6:15 p.m.•0 views

CVE-2025-5513

5.4CVSS3.6AI score0.00162EPSS