Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/06/05 8:16 p.m.17 views

CVE-2025-5523

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

6.1CVSS6.2AI score0.00256EPSS
Exploits1References1
Circl
Circl
added 2025/06/03 9:51 p.m.23 views

CVE-2025-5523

creationtimestamp| type| source ---|---|--- 2025-06-03 21:51:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqqbl4pjvp2q...

6.1CVSS7.3AI score0.00256EPSS
Exploits1References1
NVD
NVD
added 2025/06/03 8:15 p.m.29 views

CVE-2025-5523

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

6.1CVSS0.00256EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/03 7:31 p.m.11 views

CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

5.1CVSS3.7AI score0.00256EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/03 7:31 p.m.33 views

CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

5.1CVSS0.00256EPSS
Exploits1References4
CVE
CVE
added 2025/06/03 7:31 p.m.86 views

CVE-2025-5523

CVE-2025-5523 affects enilu web-flash 1.0. The vulnerability resides in the fileService.upload function of FileController/upload (File Upload component). Manipulating the File argument leads to cross-site scripting, and exploitation can be performed remotely. The CVE description notes that the ex...

6.1CVSS3.7AI score0.00256EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder