PT-2026-35964

A vulnerability was identified in NousResearch hermes-agent 0.8.0. Affected by this issue is some unknown functionality of the file gateway/platforms/wecom.py of the component WeChat Work Platform Adapter. The manipulation leads to path traversal. It is possible to initiate the attack remotely. T...

CVE-2025-15249

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249 zhujunliang3 work_platform Content cross site scripting

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249 zhujunliang3 work_platform Content cross site scripting

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249

CVE-2025-15249 concerns the zhujunliang3 work_platform, affecting the Content Handler component. Multiple sources indicate a cross-site scripting (XSS) weakness that can be exploited remotely by manipulating content. The affected release line is indicated as prior to version 6bc5a50bb527ce27f7906...

work_platform 代码注入漏洞

workplatform is a development framework by zhujunliang personal developer. A code injection vulnerability exists in workplatform, which stems from an error in the component Content Handler that could lead to a cross-site scripting attack...

PT-2025-54175

Name of the Vulnerable Software and Affected Versions zhujunliang3 work platform versions prior to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31 Description A cross site scripting issue exists in the Content Handler component of the software. The issue can be triggered remotely through manipulation. T...

CVE-2025-57393

A stored cross-site scripting XSS in Kissflow Work Platform Kissflow Application Versions 7337 Account v2.0 to v4.2vallows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

CVE-2025-57393

A stored cross-site scripting XSS in Kissflow Work Platform Kissflow Application Versions 7337 Account v2.0 to v4.2vallows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

CVE-2025-57393

A stored cross-site scripting XSS in Kissflow Work Platform Kissflow Application Versions 7337 Account v2.0 to v4.2vallows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

PT-2025-40284

Name of the Vulnerable Software and Affected Versions Kissflow Work Platform Kissflow Application versions 2.0 through 4.2 Description A stored cross-site scripting XSS issue exists in Kissflow Work Platform Kissflow Application. This allows attackers to execute arbitrary web scripts or HTML by...

Unauthorized Access Vulnerability in Founder Xiangyu-Work Platform of Beijing Beifang Founder Electronics Co.

Beijing Founder Electronics Co., Ltd Founder Electronics is a leading enterprise providing technologies, products and services in the field of cross-media information and communication, with its main business covering the fields of printing, media, publishing, big data and character libraries. An...

Directory Traversal Vulnerability in Psychological Work Platform of Shanghai North Star Software Co.

Ltd. is a manufacturer and supplier of psychometric software. A directory traversal vulnerability exists in the Psychological Work Platform of Shanghai Northstar Software Co. An attacker can exploit the vulnerability to obtain sensitive information...