Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26359

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00206EPSS
Exploits1References5
NVD
NVD
added 2025/09/01 9:15 p.m.4 views

CVE-2025-9795

A vulnerability has been found in xujeff tianti 天梯 up to 2.3. The impacted element is the function ajaxUploadFile of the file src/main/java/com/jeff/tianti/controller/UploadController.java. The manipulation of the argument upfile leads to unrestricted upload. It is possible to initiate the attack...

6.5CVSS0.00206EPSS
Exploits1References5
OSV
OSV
added 2025/09/01 9:2 p.m.4 views

CVE-2025-9795 xujeff tianti 天梯 UploadController.java ajaxUploadFile unrestricted upload

A vulnerability has been found in xujeff tianti 天梯 up to 2.3. The impacted element is the function ajaxUploadFile of the file src/main/java/com/jeff/tianti/controller/UploadController.java. The manipulation of the argument upfile leads to unrestricted upload. It is possible to initiate the attack...

5.3CVSS6.1AI score0.00206EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/08/10 11:32 a.m.17 views

CVE-2025-8807 xujeff tianti 天梯 save authorization

A vulnerability was found in xujeff tianti 天梯 up to 2.3. It has been declared as critical. This vulnerability affects unknown code of the file /tianti-module-admin/user/ajax/save. The manipulation leads to missing authorization. The attack can be initiated remotely. The exploit has been disclosed...

6.5CVSS0.00369EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/10 12:0 a.m.13 views

PT-2025-32481 · Unknown · Xujeff Tianti 天梯

Name of the Vulnerable Software and Affected Versions: xujeff tianti 天梯 versions prior to 2.3 Description: A critical issue exists in xujeff tianti 天梯, potentially leading to missing authorization. The vulnerability affects unknown code within the /tianti-module-admin/user/ajax/save API endpoint...

6.5CVSS7.3AI score0.00369EPSS
Exploits1References10
Rows per page
Query Builder