6 matches found
CVE-2025-5523
A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...
CVE-2025-5523
creationtimestamp| type| source ---|---|--- 2025-06-03 21:51:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqqbl4pjvp2q...
CVE-2025-5523
A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...
CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting
A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...
CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting
A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...
CVE-2025-5523
CVE-2025-5523 affects enilu web-flash 1.0. The vulnerability resides in the fileService.upload function of FileController/upload (File Upload component). Manipulating the File argument leads to cross-site scripting, and exploitation can be performed remotely. The CVE description notes that the ex...