CVE-2026-2075

The CVE-2026-2075 entry concerns yeqifu warehouse. Affected component is the Role-Permission Binding Handler, specifically saveRolePermission in dataset/repos/warehouse/src/main/java/com/yeqifu/sys/controller/RoleController.java. The flaw is improper access controls, enabling remote exploitation....

CVE-2024-13142

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13142

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13142 ZeroWdd studentmanager RoleController. java submitAddRole cross site scripting

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13142

CVE-2024-13142 affects ZeroWdd studentmanager 1.0. The vulnerability resides in the RoleController.java file (submitAddRole function) where manipulation of the argument name enables cross-site scripting. Impact is remote exploitation with potential user-initialized content execution; no exploit v...

PbootCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-12919)

PbootCMS is an open source enterprise building content management system CMS developed using the PHP language. A cross-site request forgery vulnerability exists in the apps/admin/controller/system/RoleController.php file in PbootCMS version 1.0.7. A remote attacker can exploit this vulnerability ...