12 matches found
EUVD-2025-4433
Malicious code in bioql PyPI...
EUVD-2025-7297
Malicious code in bioql PyPI...
EUVD-2025-7301
Malicious code in bioql PyPI...
EUVD-2025-7299
Malicious code in bioql PyPI...
EUVD-2025-10913
Malicious code in bioql PyPI...
CVE-2025-3585 westboy CicadasCMS JSP Parser upload unrestricted upload
A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /upload/ of the component JSP Parser. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-2623
A vulnerability was found in westboy CicadasCMS 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /system/cms/content/save. The manipulation of the argument title/content/laiyuan leads to cross site scripting. The attack can be launch...
CVE-2025-2625
A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /system/cms/content/page. The manipulation of the argument orderField/orderDirection leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...
CVE-2025-2624
A vulnerability was found in westboy CicadasCMS 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/cms/content/save. The manipulation of the argument content/fujian/laiyuan leads to sql injection. The attack may be launched remotely. The...
CVE-2025-2623
CVE-2025-2623 affects westboy CicadasCMS 1.0. The vulnerability lies in the unknown functionality at /system/cms/content/save, where manipulation of the arguments title, content, or lai yuan leads to cross-site scripting. It can be exploited remotely and the exploit has been disclosed publicly. C...
CVE-2025-1556
A vulnerability, which was classified as problematic, has been found in westboy CicadasCMS 1.0. This issue affects some unknown processing of the file /system of the component Template Management. The manipulation leads to deserialization. The attack may be initiated remotely. The exploit has bee...
CVE-2025-1556
CVE-2025-1556 affects westboy CicadasCMS 1.0, specifically the Template Management component’s /system processing. The issue is a deserialization vulnerability that can be triggered remotely, with public exploit disclosure. Connected sources (Red Hat, CVE references, PT Security) corroborate a Te...