Soda PDF Desktop 代码问题漏洞

Soda PDF Desktop is a full-featured PDF editing software from Soda Canada. A code issue vulnerability exists in Soda PDF Desktop that stems from an OpenSSL configuration that loads a configuration file from an insecure location, which could result in local elevation of privilege...

ActFax 代码问题漏洞

ActFax is a fax server software from Activefax Austria.ActiveFax can turn your computer into a virtual fax machine, realizing the transmission of fax and Email in Windows and UNIX applications at will, suitable for all sizes of networks and stand-alone use. A code issue vulnerability exists in...

Microsoft Azure Cognitive Service for Language 代码问题漏洞

Microsoft Azure Cognitive Service for Language is a cloud-based natural language processing service from Microsoft USA. An elevation of privilege vulnerability exists in Microsoft Azure Cognitive Service for Language, which is caused by a flaw in a customized question and answer. An attacker coul...

UliCMS 代码问题漏洞

UliCMS is a content management system CMS open source by UliCMS. The system supports features such as access control and WYSIWYG editing. A code issue vulnerability exists in UliCMS version 2023.1-sniffing-vicuna, which originates from an authenticated attacker who can upload a PHP file with a...

MailEnable 代码问题漏洞

MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from a MailEnable Insecure DLL Load vulnerability that can be exploited by an attacker to cause local arbitrary code execution...

ZITADEL 代码问题漏洞

ZITADEL is a modern open source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak built for the container and serverless era, open sourced by ZITADEL Switzerland. A code issue vulnerability exists in ZITADEL versions 4.7.0 and earlier, which stems from improper handling of the...

xunruicms 代码问题漏洞

xunruicms is a website builder framework for XunRuiCMS individual developers. A code issue vulnerability exists in xunruicms 4.7.1 and earlier versions, which stems from incorrect manipulation of the component Email Setting Handler in the file /admind45f74adbd95.php, which can lead to server-side...

Mustangproject 代码问题漏洞

Mustangproject is an invoice library, validator, and tooling software open-sourced by the ZUGFeRD Community. A code issue vulnerability exists in Mustangproject versions prior to 2.16.3 that stems from allowing file theft via XXE attacks...

Peppol-py 代码问题漏洞

Peppol-py is a Python library open-sourced by Iteras. A code issue vulnerability exists in Peppol-py versions prior to 1.1.1, which stems from a Saxon misconfiguration that could lead to an XXE attack...

EUVD-2025-199419

Malicious code in @voiceflow/dtos-interact npm...

Travel Agency 代码问题漏洞

Travel Agency is a travel management website by Ashraf Kabir, an individual developer. Travel Agency has a code issue vulnerability that stems from the presence of unknown functionality in the file /customerregister.php, which could lead to unlimited uploads...

Microsoft SharePoint 代码问题漏洞

Microsoft SharePoint is a suite of enterprise business collaboration platforms from Microsoft. The platform is used to consolidate business information and enable sharing work, collaborating with others, organizing projects and workgroups, and searching for people and information. A code issue...

Narkom Pyxis Signage 代码问题漏洞

Narkom Pyxis Signage is a digital notice screen management system from Narkom Turkey. A code issue vulnerability exists in Narkom Pyxis Signage 31012025 and prior versions, which stems from an unrestricted upload of a dangerous type of file, which could lead to improper access control...

Microsoft Azure Monitor 代码问题漏洞

Microsoft Azure Monitor is a newer observability tool from Microsoft USA that enables end-to-end monitoring capabilities for applications, infrastructure and networks. A code issue vulnerability exists in Microsoft Azure Monitor that stems from an elevation of privilege vulnerability...

Muse Group MuseHub 代码问题漏洞

Muse Group MuseHub is a music creation platform from Muse Group Cyprus. A code issue vulnerability exists in Muse Group MuseHub version 2.1.0.1567, which stems from an unreferenced search path and could lead to a local attack...

Bdtask Flight Booking Software 代码问题漏洞

Bdtask Flight Booking Software is an airline booking software from Bdtask Bangladesh. A code issue vulnerability exists in Bdtask Flight Booking Software that stems from incorrect manipulation of the component Edit Profile Page in the file /agent/profile/edit, which could lead to unlimited upload...

MaxKB 代码问题漏洞

MaxKB is a 1Panel-dev open source open source knowledge base question and answer system based on a large language model and RAG. A code issue vulnerability exists in MaxKB versions prior to 2.3.1, which stems from a user being able to access internal web services via Python code in a tool module,...

SAP NetWeaver Application Server for ABAP 代码问题漏洞

SAP NetWeaver Application Server for ABAP is a core application server platform from SAP, Germany. A code issue vulnerability exists in SAP NetWeaver Application Server for ABAP that stems from an administrator uploading a file without triggering a malware scan, which could result in the upload o...

Microsoft Windows 代码问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows Administrator Protection. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are...

Intel MPI Library 代码问题漏洞

Intel MPI Library is a library from Intel Corporation USA. A code issue vulnerability exists in Intel MPI Library versions prior to 2021.16, which stems from an uncontrolled search path that could lead to elevation of privilege...