17 matches found
CVE-2025-70044
An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3...
CVE-2025-70044
An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3...
CVE-2025-70044
An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3...
PT-2026-21521
Name of the Vulnerable Software and Affected Versions fofolee uTools-quickcommand version 5.0.3 Description An issue exists regarding improper certificate validation in fofolee uTools-quickcommand. This can potentially allow for security compromises due to the lack of proper certificate checks...
CVE-2025-70044
CVE-2025-70044 affects fofolee uTools-quickcommand 5.0.3. The issue is improper certificate validation (CWE-295) and is described as a network-reachable vulnerability with medium severity (CVSS v3.1: 6.5). The Red Hat, NVD, and CVE records concur on the affected software version and the root caus...
uTools-quickcommand 安全漏洞
uTools-quickcommand is an automated operation software developed by fofolee. Version uTools-quickcommand 5.0.3 has a security vulnerability, which stems from improper certificate verification...
CVE-2025-70044
An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3...
CVE-2025-70044
An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3...
EUVD-2025-26422
Malicious code in bioql PyPI...
CVE-2025-51966
A cross-site scripting XSS vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application's privileged context, potentially allowing attackers to steal sensitive data or perfor...
CVE-2025-51966
A cross-site scripting XSS vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application's privileged context, potentially allowing attackers to steal sensitive data or perfor...
CVE-2025-51966
A cross-site scripting XSS vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application's privileged context, potentially allowing attackers to steal sensitive data or perfor...
uTools 安全漏洞
uTools is a customization tool platform from China Ape Power uTools Inc. A security vulnerability exists in uTools 7.1.1 and earlier versions, which stems from improper handling of the PDF Preview feature and could lead to a cross-site scripting attack...
CVE-2025-51966
A cross-site scripting XSS vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application's privileged context, potentially allowing attackers to steal sensitive data or perfor...
CVE-2025-51966
CVE-2025-51966 describes an XSS in uTools up to version 7.1.1, specifically in the PDF preview feature. The vulnerability arises when previews of specially crafted PDF files cause embedded JavaScript to execute within the application's privileged context, potentially enabling data theft or unauth...
PT-2025-35592
Name of the Vulnerable Software and Affected Versions: uTools versions through 7.1.1 Description: A cross-site scripting XSS issue exists in the PDF preview functionality. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application’s privileged...
CVE-2025-51966
A cross-site scripting XSS vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the application's privileged context, potentially allowing attackers to steal sensitive data or perfor...