EUVD-2025-23910

Malicious code in bioql PyPI...

CVE-2025-29866

: External Control of File Name or Path vulnerability in TAGFREE X-Free Uploader XFU allows : Parameter Injection.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29865

: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in TAGFREE X-Free Uploader XFU allows Path Traversal.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29866

: External Control of File Name or Path vulnerability in TAGFREE X-Free Uploader XFU allows : Parameter Injection.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29866

: External Control of File Name or Path vulnerability in TAGFREE X-Free Uploader XFU allows : Parameter Injection.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29866

: External Control of File Name or Path vulnerability in TAGFREE X-Free Uploader XFU allows : Parameter Injection.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29865

: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in TAGFREE X-Free Uploader XFU allows Path Traversal.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29865

CVE-2025-29865 concerns a Path Traversal vulnerability in TAGFREE X-Free Uploader XFU. Public documents specify affected versions: 1.0.1.0084–1.0.1.0085 (and earlier) and 2.0.1.0034–2.0.1.0035. Root cause: improper limitation of a pathname to a restricted directory. Potential impact is unauthoriz...

CVE-2025-29865

: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in TAGFREE X-Free Uploader XFU allows Path Traversal.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

CVE-2025-29865

: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in TAGFREE X-Free Uploader XFU allows Path Traversal.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035...

TAGFREE X‑Free Uploader 安全漏洞

TAGFREE X-Free Uploader is a file upload/download component for HTML5 from TAGFREE Korea. A security vulnerability exists in TAGFREE X-Free Uploader versions prior to 1.0.1.0084 to 1.0.1.0085 and 2.0.1.0034 to 2.0.1.0035, which stems from vulnerability to parameter injection attacks...

TAGFREE X‑Free Uploader 安全漏洞

TAGFREE X-Free Uploader is a file upload/download component for HTML5 from TAGFREE Korea. A security vulnerability exists in TAGFREE X-Free Uploader versions prior to 1.0.1.0084 to 1.0.1.0085 and 2.0.1.0034 to 2.0.1.0035, which originates from vulnerability to path traversal attacks...

PT-2025-32243 · Tagfree · Tagfree X-Free Uploader Xfu

Name of the Vulnerable Software and Affected Versions: TAGFREE X-Free Uploader XFU versions 1.0.1.0084 through 1.0.1.0085 TAGFREE X-Free Uploader XFU versions 2.0.1.0034 through 2.0.1.0035 Description: The software contains a Path Traversal flaw that allows unauthorized access. The issue is due t...

PT-2025-32257 · Tagfree · Tagfree X-Free Uploader Xfu

Name of the Vulnerable Software and Affected Versions: TAGFREE X-Free Uploader XFU versions 1.0.1.0084 through 1.0.1.0084 TAGFREE X-Free Uploader XFU versions 2.0.1.0034 through 2.0.1.0034 Description: An External Control of File Name or Path vulnerability exists in TAGFREE X-Free Uploader XFU,...