EUVD-2025-7499

Malicious code in bioql PyPI...

CVE-2025-2114 Shenzhen Sixun Software Sixun Shanghui Group Business Management System Reset Password Interface OperatorStop.asp improper authorization

A vulnerability, which was classified as problematic, has been found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 7. This issue affects some unknown processing of the file /WebPages/Adm/OperatorStop.asp of the component Reset Password Interface. The manipulation of t...

CVE-2024-57439

An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause a Denial of Service DoS by duplicating the login name of the account...

CVE-2024-57439

CVE-2024-57439 affects Ruoyi v4.8.0. The vulnerability resides in the reset password interface, where attackers with Admin privileges can trigger a Denial of Service by duplicating the login name of an account. Affected component is the reset-password flow; root cause and exact code path are not ...

CVE-2024-57439

An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause a Denial of Service DoS by duplicating the login name of the account...

CVE-2024-38468

Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword API...

cPanel cross-site scripting vulnerability (CNVD-2019-30464)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the reset password interface in versions prior to cPanel 62.0.4. The vulnerability...