CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability classified as problematic has been found in xujiangfei admintwo 1.0. This affects an unknown part of the file /user/updateSet. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may...

5.3CVSS6.8AI score0.00203EPSS

Exploits1References1

RedhatCVE•added 2025/04/06 5:31 p.m.•9 views

CVE-2025-3252

A vulnerability has been found in xujiangfei admintwo 1.0 and classified as problematic. This vulnerability affects unknown code of the file /resource/add. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to...

6.1CVSS6.4AI score0.00346EPSS

Exploits1References1

RedhatCVE•added 2025/04/06 5:31 p.m.•12 views

CVE-2025-3253

A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed t...

6.1CVSS6.3AI score0.00363EPSS

Exploits1References1

RedhatCVE•added 2025/04/06 5:30 p.m.•9 views

CVE-2025-3255

A vulnerability was found in xujiangfei admintwo 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /user/home. The manipulation of the argument ID leads to improper access controls. The attack can be launched remotely. The exploit has...

5.3CVSS7AI score0.00339EPSS

Exploits1References1

RedhatCVE•added 2025/04/06 3:31 p.m.•7 views

CVE-2025-3251

A vulnerability, which was classified as problematic, was found in xujiangfei admintwo 1.0. This affects an unknown part of the file /user/updateSet. The manipulation of the argument motto leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclose...

5.1CVSS6.2AI score0.00272EPSS

Exploits1References1

OSV•added 2025/04/04 5:15 p.m.•1 views

CVE-2025-3257

5.3CVSS4.8AI score

Exploits0References4

NVD•added 2025/04/04 5:15 p.m.•3 views

CVE-2025-3256

A vulnerability was found in xujiangfei admintwo 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/updateSet. The manipulation of the argument email leads to improper access controls. The attack may be launched remotely. The exploit has bee...

7.5CVSS0.00151EPSS

Exploits1References4

NVD•added 2025/04/04 5:15 p.m.•4 views

CVE-2025-3257

5.3CVSS0.00203EPSS

Exploits1References4

OSV•added 2025/04/04 5:15 p.m.•1 views

CVE-2025-3256

7.5CVSS5.5AI score

Exploits0References4

Vulnrichment•added 2025/04/04 4:31 p.m.•19 views

CVE-2025-3257 xujiangfei admintwo updateSet cross-site request forgery

5.3CVSS7AI score0.00203EPSS

Exploits1References4

CVE•added 2025/04/04 4:31 p.m.•68 views

CVE-2025-3257

CVE-2025-3257 affects xujiangfei admintwo 1.0. The issue is a cross-site request forgery in an unknown portion of the /user/updateSet file. Exploitation is possible remotely, and the exploit has been disclosed publicly. Several sources (Red Hat, CVE listings, and vulnerability trackers) corrobora...

5.3CVSS4.7AI score0.00203EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/04/04 4:31 p.m.•6 views

CVE-2025-3257 xujiangfei admintwo updateSet cross-site request forgery

5.3CVSS0.00203EPSS

Exploits1References4

CVE•added 2025/04/04 4:31 p.m.•65 views

CVE-2025-3256

CVE-2025-3256 affects xujiangfei admintwo 1.0. The vulnerability resides in the /user/updateSet functionality, where manipulation of the email parameter leads to improper access controls. This could enable a remote attacker to bypass authorization. Publicly disclosed exploit information is noted ...

7.5CVSS6.5AI score0.00151EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by