CVE-2025-3960

A vulnerability was found in withstars Books-Management-System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /allreaders.html of the component Background Interface. The manipulation leads to missing authorization. The attack may be launched...

CVE-2025-3960 withstars Books-Management-System Background Interface allreaders.html authorization

A vulnerability was found in withstars Books-Management-System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /allreaders.html of the component Background Interface. The manipulation leads to missing authorization. The attack may be launched...

PT-2025-17989 · Unknown · Withstars Books-Management-System

Name of the Vulnerable Software and Affected Versions: withstars Books-Management-System version 1.0 Description: A critical issue has been found in the Background Interface of the withstars Books-Management-System, affecting the file /admin/article/list. This issue leads to missing authorization...

CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

MarsCTF 代码问题漏洞

MarsCTF is a Vue + Springboot developed CTF learning platform by b1ackc4t individual developer. A security vulnerability exists in MarsCTF version 1.2.1, which stems from an arbitrary file upload vulnerability in the background upload attachment interface...

PT-2023-24327 · Marsctf · Marsctf

Name of the Vulnerable Software and Affected Versions: MarsCTF version 1.2.1 Description: The issue is related to an arbitrary file upload vulnerability in the interface for uploading attachments in the background. This allows for potential malicious file uploads. Recommendations: For MarsCTF...

Arbitrary file readout vulnerability in the background sh***.php interface of the Tianqing security isolation and information exchange system

Tianqing Security Isolation and Information Exchange System is the access control switch equipment with network isolation technology independently developed by Qixing Information Technology Co., Ltd, which provides high security isolation protection for key data. There is an arbitrary file readin...

Arbitrary file readout vulnerability in the background pr***.php interface of the Tianqing Secure Isolation and Information Exchange System

Tianqing Security Isolation and Information Exchange System is the access control switch equipment with network isolation technology independently developed by Qixing Information Technology Co., Ltd, which provides high security isolation protection for key data. There is an arbitrary file readin...