9 matches found
EUVD-2025-24145
Malicious code in bioql PyPI...
CVE-2025-8847
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-8847
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-8847
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-8847 yangzongzhuan RuoYi edit cross site scripting
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-8847 yangzongzhuan RuoYi edit cross site scripting
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-8847
Vulnerability CVE-2025-8847 affects yangzongzhuan RuoYi up to version 4.8.1. The Edit function in /system/notice/edit is vulnerable: manipulating noticeTitle/noticeContent enables cross-site scripting. The issue can be exploited remotely and the exploit has been publicly disclosed. Remediation gu...
PT-2025-32543 · Yangzongzhuan · Ruoyi
Name of the Vulnerable Software and Affected Versions: yangzongzhuan RuoYi versions up to 4.8.1 Description: A cross-site scripting issue exists in the Edit function of the /system/notice/edit file. Manipulation of the noticeTitle and noticeContent arguments can lead to exploitation. The exploit...
RuoYi 代码注入漏洞
RuoYi is a back-end management system for individual developers of RuoYi in China. RuoYi 4.8.1 and previous versions of code injection vulnerability exists, the vulnerability stems from the file /system/notice/edit in the parameter noticesTitle/noticeContent improper handling of cross-site...