CVE-2025-5397

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

RuoYi 安全漏洞

RuoYi is a backend management system for individual developers in RuoYi, China. A security vulnerability exists in RuoYi 4.8.1 and earlier versions, which stems from the use of default credentials by the Druid component...

RuoYi 代码注入漏洞

RuoYi is a backend management system for individual developers of RuoYi in China. A code injection vulnerability exists in RuoYi 4.8.1 and earlier versions, which originates from cross-site scripting due to incorrect manipulation of the parameter configUrl in the file /swagger-ui/index.html...

RuoYi 代码注入漏洞

RuoYi is a backend management system for individual developers of RuoYi in China. RuoYi 4.8.1 and previous versions of code injection vulnerability exists, the vulnerability stems from the file com/ruoyi/web/controller/system/SysNoticeController.java function addSave incorrect operation leads to...

Skyhigh Client Proxy Security Vulnerability

Skyhigh Client Proxy is a client proxy from Skyhigh. A security vulnerability exists in Skyhigh Client Proxy 4.8.1 and earlier versions, which stems from the presence of a control flow implementation error issue that allows an attacker to circumvent existing security controls...