Lucene search
+L

8 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-16781

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.00256EPSS
Exploits1References5
redhatcve
redhatcve
added 2025/06/05 8:16 p.m.17 views

CVE-2025-5523

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

6.1CVSS6.2AI score0.00256EPSS
Exploits1References1
osv
osv
added 2025/06/03 8:15 p.m.13 views

CVE-2025-5523

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

6.1CVSS3.8AI score0.00256EPSS
Exploits1References4
nvd
nvd
added 2025/06/03 8:15 p.m.29 views

CVE-2025-5523

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

6.1CVSS0.00256EPSS
Exploits1References4
cvelist
cvelist
added 2025/06/03 7:31 p.m.36 views

CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

5.1CVSS0.00256EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/06/03 7:31 p.m.11 views

CVE-2025-5523 enilu web-flash File Upload upload fileService.upload cross site scripting

A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/controller/FileController/upload of the component File Upload. The manipulation of the argument File leads to cross site...

5.1CVSS3.7AI score0.00256EPSS
Exploits1References4
cve
cve
added 2025/06/03 7:31 p.m.86 views

CVE-2025-5523

CVE-2025-5523 affects enilu web-flash 1.0. The vulnerability resides in the fileService.upload function of FileController/upload (File Upload component). Manipulating the File argument leads to cross-site scripting, and exploitation can be performed remotely. The CVE description notes that the ex...

6.1CVSS3.7AI score0.00256EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2025/06/03 12:0 a.m.7 views

PT-2025-23664 · Unknown · Enilu Web-Flash

Name of the Vulnerable Software and Affected Versions: enilu web-flash version 1.0 Description: A problematic vulnerability has been found in the File Upload component of enilu web-flash. This issue affects the fileService.upload function, allowing for cross-site scripting through the manipulatio...

6.1CVSS3.7AI score0.00256EPSS
Exploits1References8
Rows per page
Query Builder