Thinkgem JeeSite 输入验证错误漏洞

Thinkgem JeeSite is an open source Java EE enterprise-class rapid development platform of China Zhuo Yuan Thinkgem company . The platform includes system permissions components , data permissions components , data dictionary components , core tools components , view manipulation components ,...

Apache HTTP Server Input Validation Error Vulnerability (CNVD-2025-16612)

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. An input validation error vulnerability exists in Apache HTTP Server, which can be exploited by an attacker to manipulate the...

DiracX-Web 输入验证错误漏洞

DiracX-Web is an open source user interface for DiracX from the DIRAC Project. An input validation error vulnerability exists in versions of DiracX-Web prior to 0.1.0-a8, which stems from an unvalidated redirect field and could lead to a phishing attack...

RT-Thread Input Validation Error Vulnerability (CNVD-2025-16524)

RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from an input validation error vulnerability that originates from the operation of the parameter how in the file rt-thread/components/lwp/lwpsyscall.c, which can be exploited by an attacke...

Apache HTTP Server 输入验证错误漏洞

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. An input validation error vulnerability exists in Apache HTTP Server, which can be exploited by an attacker to manipulate the...

Apache Tomcat 输入验证错误漏洞

Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server . Used to implement the Servlet and JavaServer Page JSP support. An input validation error vulnerability exists in Apache Tomcat, which stems from an integer overflow, and can be exploited by an...

SAP NetWeaver Application Server ABAP 输入验证错误漏洞

SAP NetWeaver Application Server ABAP is a platform for running and developing applications based on the ABAP language from SAP, Germany. An input validation error vulnerability exists in SAP NetWeaver Application Server ABAP, which stems from an open redirect that could cause a browser to execut...

Microsoft Hyper-V 输入验证错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. An input validation error vulnerability exists in Microsoft Hyper-V. An attacker exploiting this vulnerability could gain access to sensitive...

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when manipulating mailboxes in Automotive...

Microsoft Windows 输入验证错误漏洞

Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. Microsoft Windows has a security vulnerability. An attacker can exploit the vulnerability to elevate privileges...

SAP BusinessObjects Content Administrator workbench 输入验证错误漏洞

SAP BusinessObjects Content Administrator workbench is a software used to manage the report distribution function by SAP, Germany. An input validation error vulnerability exists in SAP BusinessObjects Content Administrator Workbench that stems from insufficient cleanup and could lead to the...

PHOENIX CONTACT CHARX SEC 输入验证错误漏洞

The PHOENIX CONTACT CHARX SEC is a series of AC charge controllers from PHOENIX CONTACT, Germany. The PHOENIX CONTACT CHARX SEC suffers from an input validation error vulnerability that originates from a local attacker who can exploit a vulnerable script via SSH and elevate privileges to root due...

Hugging Face Transformers 输入验证错误漏洞

Hugging Face Transformers is Hugging Face's open source advanced natural language processing for Jax, PyTorch and TensorFlow. An input validation error vulnerability exists in Hugging Face Transformers version 4.49.0 and earlier, which stems from insufficient URL validation in imageutils.py and...

Better Auth 输入验证错误漏洞

Better Auth is a TypeScript's most comprehensive authentication framework open-sourced by Better Auth. An input validation error vulnerability exists in versions of Better Auth prior to 1.2.10, which stems from the presence of an open redirect in the originCheck middleware function, which could...

Monitorr 输入验证错误漏洞

Monitorr is a web front-end for Monitorr open source. It is used to display the status of any web application or service in real time. An input validation error vulnerability exists in Monitorr 1.7.6m and earlier versions, which stems from improper input validation due to incorrect manipulation o...

OpenBao Input Validation Error Vulnerability

OpenBao is OpenBao open source a sensitive data management software . OpenBao has an input validation error vulnerability that can be exploited by an attacker to cause a denial of service...

CHMLib 输入验证错误漏洞

CHMLib is a library of functions for working with CHM files from the individual developers of jedwing. An input validation error vulnerability exists in CHMLib 2bef8d0 and earlier versions, which stems from a chmdecompressblock integer overflow that could result in a heap buffer overflow...

COVID19 Testing Management System Input Validation Error Vulnerability

The COVID19 Testing Management System is a new crown pneumonia testing management system. The COVID19 Testing Management System has an input validation error vulnerability that originates from an open redirect due to the operation of the parameter q in the file /search-report-result.php. No detai...

n8n 输入验证错误漏洞

n8n is a scalable workflow automation tool from n8n open source. An input validation error vulnerability exists in n8n versions prior to 1.98.0, which stems from an open redirection vulnerability in the login process that could lead to a phishing attack...

xxl-sso 输入验证错误漏洞

xxl-sso is a distributed single sign-on framework by individual developer Xu Xue Li. An input validation error vulnerability exists in xxl-sso version 1.1.0, which is caused by incorrect operation of the redirecturl parameter in file /xxl-sso-server/doLogin, resulting in an open redirect...