CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

306 matches found

CVE•added 2025/03/11 8:31 p.m.•48 views

CVE-2025-2208

CVE-2025-2208 affects aitangbao springboot-manager 3.0, specifically a vulnerability in the Filename Handler that processes the file at /sysFiles/upload. The issue arises from manipulation of the argument name, enabling cross-site scripting. It can be exploited remotely, and public exploits have ...

4.8CVSS3.3AI score0.00066EPSS

Exploits1References4Affected Software1

NVD•added 2025/03/11 8:15 p.m.•13 views

CVE-2025-2206

A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0. This affects an unknown part of the file /sys/permission. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclos...

4.8CVSS0.00066EPSS

Exploits1References4

OSV•added 2025/03/11 8:15 p.m.•1 views

CVE-2025-2207

A vulnerability classified as problematic was found in aitangbao springboot-manager 3.0. This vulnerability affects unknown code of the file /sys/dept. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the...

4.8CVSS3.8AI score

Exploits0References4

NVD•added 2025/03/11 8:15 p.m.•11 views

CVE-2025-2207

4.8CVSS0.00066EPSS

Exploits1References4

OSV•added 2025/03/11 8:15 p.m.•2 views

CVE-2025-2206

4.8CVSS3.9AI score

Exploits0References4

Cvelist•added 2025/03/11 8:0 p.m.•15 views

CVE-2025-2207 aitangbao springboot-manager dept cross site scripting

4.8CVSS0.00066EPSS

Exploits1References4

CVE•added 2025/03/11 8:0 p.m.•53 views

CVE-2025-2207

CVE-2025-2207 affects aitangbao springboot-manager 3.0. The vulnerability arises from manipulation of the argument name in code handling /sys/dept, resulting in cross-site scripting. The attack can be initiated remotely and the exploit has been disclosed publicly. Other parameters may also be aff...

4.8CVSS3.4AI score0.00066EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2025/03/11 8:0 p.m.•19 views

CVE-2025-2207 aitangbao springboot-manager dept cross site scripting

4.8CVSS3.5AI score0.00066EPSS

Exploits1References4

Vulnrichment•added 2025/03/11 8:0 p.m.•6 views

CVE-2025-2206 aitangbao springboot-manager permission cross site scripting

4.8CVSS3.4AI score0.00066EPSS

Exploits1References4

CVE•added 2025/03/11 8:0 p.m.•46 views

CVE-2025-2206

Summary of CVE-2025-2206 (aitangbao springboot-manager 3.0) A vulnerability exists in aitangbao springboot-manager version 3.0 involving the file /sys/permission. The issue arises from manipulation of the name argument, which leads to cross-site scripting. The attack can be initiated remotely and...

4.8CVSS3.3AI score0.00066EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/03/11 8:0 p.m.•13 views

CVE-2025-2206 aitangbao springboot-manager permission cross site scripting

4.8CVSS0.00066EPSS

Exploits1References4

CNNVD•added 2025/03/11 12:0 a.m.•2 views

springboot-manager 代码注入漏洞

springboot-manager is a backend management system based on SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus by an individual developer in China, liwenbin. A code injection vulnerability exists in springboot-manager version 3.0, which originates from cross-site scripting and...

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

CNNVD•added 2025/03/11 12:0 a.m.•1 views

springboot-manager 代码注入漏洞

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

CNNVD•added 2025/03/11 12:0 a.m.•2 views

springboot-manager 代码注入漏洞

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

CNNVD•added 2025/03/11 12:0 a.m.•1 views

springboot-manager 代码注入漏洞

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

Positive Technologies•added 2025/03/11 12:0 a.m.•2 views

PT-2025-10895 · Unknown · Aitangbao Springboot-Manager

Name of the Vulnerable Software and Affected Versions: aitangbao springboot-manager version 3.0 Description: A problematic vulnerability has been found in aitangbao springboot-manager, affecting an unknown part of the file /sys/permission. The manipulation of the name argument leads to cross-site...

4.8CVSS3.3AI score0.00066EPSS

Exploits1References8

CNNVD•added 2025/03/11 12:0 a.m.•1 views

springboot-manager 代码注入漏洞

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

CNNVD•added 2025/03/11 12:0 a.m.•1 views

springboot-manager 代码注入漏洞

springboot-manager is a backend management system based on SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus by individual developer liwenbin in China. aitangbao A code injection vulnerability exists in springboot-manager version 3.0, which originates from cross-site scripting...

4.8CVSS4.4AI score0.00066EPSS

Exploits1References5

CNNVD•added 2025/03/07 12:0 a.m.•3 views

starsea-mall 代码注入漏洞

starsea-mall is a springboot +thymeleaf based Xiaomi mall management system by StarSea99 individual developer. A code injection vulnerability exists in starsea-mall version 1.0, which stems from improper manipulation of the redirectUrl parameter and could lead to cross-site scripting attacks...

6.1CVSS4.7AI score0.0023EPSS

Exploits1References6

RedhatCVE•added 2025/02/04 11:54 p.m.•2 views

CVE-2024-13200

A vulnerability, which was classified as critical, was found in wander-chu SpringBoot-Blog 1.0. This affects the function preHandle of the file src/main/java/com/my/blog/website/interceptor/BaseInterceptor.java of the component HTTP POST Request Handler. The manipulation leads to improper access...

7.5CVSS7.3AI score0.00082EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by