Lucene search
+L

6 matches found

veracode
veracode
added 2025/12/13 4:40 a.m.12 views

Path Traversal

io.github.wwwlike, vlife-base is vulnerable to Path Traversal. The vulnerability is due to improper validation of the fileName argument in the create function of SysFileApi.java, which allows a remote attacker to manipulate file paths and perform unauthorized file access via path traversal...

6.9CVSS6.1AI score0.00579EPSS
Exploits0References5Affected Software1
redhatcve
redhatcve
added 2025/11/18 6:58 a.m.10 views

CVE-2025-13266

A security vulnerability has been detected in wwwlike vlife up to 2.0.1. This issue affects the function create of the file vlife-base/src/main/java/cn/wwwlike/sys/api/SysFileApi.java of the component VLifeApi. Such manipulation of the argument fileName leads to path traversal. It is possible to...

6.9CVSS5.2AI score0.00579EPSS
Exploits0References1
github
github
added 2025/11/17 6:30 a.m.9 views

vlife-base has Path Traversal vulnerability

A security vulnerability has been detected in wwwlike vlife up to 2.0.1. This issue affects the function create of the file vlife-base/src/main/java/cn/wwwlike/sys/api/SysFileApi.java of the component VLifeApi. Such manipulation of the argument fileName leads to path traversal. It is possible to...

6.9CVSS5.5AI score0.00579EPSS
Exploits0References6Affected Software1
osv
osv
added 2025/11/17 6:15 a.m.6 views

CVE-2025-13266

A security vulnerability has been detected in wwwlike vlife up to 2.0.1. This issue affects the function create of the file vlife-base/src/main/java/cn/wwwlike/sys/api/SysFileApi.java of the component VLifeApi. Such manipulation of the argument fileName leads to path traversal. It is possible to...

6.9CVSS5.5AI score0.00579EPSS
Exploits0References4
cvelist
cvelist
added 2025/11/17 6:2 a.m.13 views

CVE-2025-13266 wwwlike vlife VLifeApi SysFileApi.java create path traversal

A security vulnerability has been detected in wwwlike vlife up to 2.0.1. This issue affects the function create of the file vlife-base/src/main/java/cn/wwwlike/sys/api/SysFileApi.java of the component VLifeApi. Such manipulation of the argument fileName leads to path traversal. It is possible to...

6.9CVSS0.00579EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/11/17 6:2 a.m.2 views

CVE-2025-13266 wwwlike vlife VLifeApi SysFileApi.java create path traversal

A security vulnerability has been detected in wwwlike vlife up to 2.0.1. This issue affects the function create of the file vlife-base/src/main/java/cn/wwwlike/sys/api/SysFileApi.java of the component VLifeApi. Such manipulation of the argument fileName leads to path traversal. It is possible to...

6.9CVSS5.4AI score0.00579EPSS
Exploits0References4
Rows per page
Query Builder