Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/07/22 3:59 p.m.14 views

CVE-2025-7901

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been rated as problematic. This issue affects some unknown processing of the file /swagger-ui/index.html of the component Swagger UI. The manipulation of the argument configUrl leads to cross site scripting. The attack may be...

6.1CVSS6.5AI score0.00732EPSS
Exploits1References1
NVD
NVD
added 2025/07/20 4:15 p.m.6 views

CVE-2025-7901

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been rated as problematic. This issue affects some unknown processing of the file /swagger-ui/index.html of the component Swagger UI. The manipulation of the argument configUrl leads to cross site scripting. The attack may be...

6.1CVSS0.00732EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/07/20 3:32 p.m.20 views

CVE-2025-7901 yangzongzhuan RuoYi Swagger UI index.html cross site scripting

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been rated as problematic. This issue affects some unknown processing of the file /swagger-ui/index.html of the component Swagger UI. The manipulation of the argument configUrl leads to cross site scripting. The attack may be...

5.3CVSS0.00732EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/07/20 3:32 p.m.5 views

CVE-2025-7901 yangzongzhuan RuoYi Swagger UI index.html cross site scripting

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been rated as problematic. This issue affects some unknown processing of the file /swagger-ui/index.html of the component Swagger UI. The manipulation of the argument configUrl leads to cross site scripting. The attack may be...

5.3CVSS4.3AI score0.00732EPSS
Exploits1References4
CVE
CVE
added 2025/07/20 3:32 p.m.19 views

CVE-2025-7901

Summary (CVE-2025-7901) : The vulnerability affects yangzongzhuan RuoYi versions up to 4.8.1, specifically in the Swagger UI component accessed via /swagger-ui/index.html. The root cause is manipulation of the configUrl parameter in Swagger UI, which can lead to cross‑site scripting. The issue ma...

6.1CVSS4.4AI score0.00732EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder