Lucene search
K

22 matches found

Cvelist
Cvelist
added 2026/06/29 2:45 a.m.31 views

CVE-2026-13528 YunaiV/zhijiantianya ruoyi-vue-pro AppFileController File Upload Endpoint FileServiceImpl.java generateUploadPath path traversal

A vulnerability was found in YunaiV/zhijiantianya ruoyi-vue-pro up to 2026.04-jdk8-SNAPSHOT. The impacted element is the function generateUploadPath of the file yudao-module-infra/src/main/java/cn/iocoder/yudao/module/infra/service/file/FileServiceImpl.java of the component AppFileController File...

7.5CVSS0.00447EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-8067

Malicious code in bioql PyPI...

8.1CVSS4.9AI score0.00771EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8068

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00651EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8007

Malicious code in bioql PyPI...

9.1CVSS5.7AI score0.00809EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8005

Malicious code in bioql PyPI...

9.1CVSS5.7AI score0.00809EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/03/27 7:15 a.m.20 views

CVE-2025-2743

A vulnerability, which was classified as problematic, has been found in zhijiantianya ruoyi-vue-pro 2.4.1. This issue affects some unknown processing of the file /admin-api/mp/material/upload-temporary of the component Material Upload Interface. The manipulation of the argument File leads to path...

8.1CVSS6.8AI score0.00771EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/27 7:12 a.m.18 views

CVE-2025-2742

A vulnerability classified as critical was found in zhijiantianya ruoyi-vue-pro 2.4.1. This vulnerability affects unknown code of the file /admin-api/mp/material/upload-permanent of the component Material Upload Interface. The manipulation of the argument File leads to path traversal. The attack...

8.1CVSS7AI score0.00772EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/26 8:23 p.m.9 views

CVE-2025-2708

A vulnerability, which was classified as critical, was found in zhijiantianya ruoyi-vue-pro 2.4.1. This affects an unknown part of the file /admin-api/infra/file/upload of the component Backend File Upload Interface. The manipulation of the argument path leads to path traversal. It is possible to...

9.1CVSS7AI score0.00809EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/25 7:0 a.m.35 views

CVE-2025-2743 zhijiantianya ruoyi-vue-pro Material Upload Interface upload-temporary path traversal

A vulnerability, which was classified as problematic, has been found in zhijiantianya ruoyi-vue-pro 2.4.1. This issue affects some unknown processing of the file /admin-api/mp/material/upload-temporary of the component Material Upload Interface. The manipulation of the argument File leads to path...

5.3CVSS0.00771EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/25 7:0 a.m.11 views

CVE-2025-2743 zhijiantianya ruoyi-vue-pro Material Upload Interface upload-temporary path traversal

A vulnerability, which was classified as problematic, has been found in zhijiantianya ruoyi-vue-pro 2.4.1. This issue affects some unknown processing of the file /admin-api/mp/material/upload-temporary of the component Material Upload Interface. The manipulation of the argument File leads to path...

5.3CVSS7AI score0.00771EPSS
Exploits1References4
CVE
CVE
added 2025/03/25 7:0 a.m.91 views

CVE-2025-2743

CVE-2025-2743 affects zhijiantianya ruoyi-vue-pro 2.4.1. The vulnerability exists in the Material Upload Interface, specifically the endpoint /admin-api/mp/material/upload-temporary, where manipulation of the File argument leads to path traversal. Descriptions from multiple sources indicate remot...

8.1CVSS7AI score0.00771EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/25 6:31 a.m.8 views

CVE-2025-2742 zhijiantianya ruoyi-vue-pro Material Upload Interface upload-permanent path traversal

A vulnerability classified as critical was found in zhijiantianya ruoyi-vue-pro 2.4.1. This vulnerability affects unknown code of the file /admin-api/mp/material/upload-permanent of the component Material Upload Interface. The manipulation of the argument File leads to path traversal. The attack...

5.5CVSS7.2AI score0.00772EPSS
Exploits1References4
CVE
CVE
added 2025/03/25 6:31 a.m.84 views

CVE-2025-2742

CVE-2025-2742 affects zhijiantianya ruoyi-vue-pro 2.4.1. The vulnerability exists in the Material Upload Interface’s /admin-api/mp/material/upload-permanent path, where manipulation of the File argument leads to path traversal. Remote exploitation is possible, and the exploit has been publicly di...

8.1CVSS7.2AI score0.00772EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/25 12:0 a.m.7 views

PT-2025-12769

Name of the Vulnerable Software and Affected Versions zhijiantianya ruoyi-vue-pro version 2.4.1 Description A critical issue was found in the Material Upload Interface component, specifically affecting the /admin-api/mp/material/upload-permanent file. The manipulation of the File argument leads t...

8.1CVSS5.5AI score0.00772EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/03/25 12:0 a.m.7 views

PT-2025-12770 · Zhijiantianya · Ruoyi-Vue-Pro

Name of the Vulnerable Software and Affected Versions: zhijiantianya ruoyi-vue-pro version 2.4.1 Description: A problematic issue has been found in the Material Upload Interface component, affecting the processing of the file /admin-api/mp/material/upload-temporary. The manipulation of the File...

8.1CVSS4.3AI score0.00771EPSS
Exploits1References12
NVD
NVD
added 2025/03/24 8:15 p.m.8 views

CVE-2025-2708

A vulnerability, which was classified as critical, was found in zhijiantianya ruoyi-vue-pro 2.4.1. This affects an unknown part of the file /admin-api/infra/file/upload of the component Backend File Upload Interface. The manipulation of the argument path leads to path traversal. It is possible to...

9.1CVSS0.00809EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/24 7:31 p.m.15 views

CVE-2025-2708 zhijiantianya ruoyi-vue-pro Backend File Upload Interface upload path traversal

A vulnerability, which was classified as critical, was found in zhijiantianya ruoyi-vue-pro 2.4.1. This affects an unknown part of the file /admin-api/infra/file/upload of the component Backend File Upload Interface. The manipulation of the argument path leads to path traversal. It is possible to...

5.5CVSS0.00809EPSS
Exploits1References4
NVD
NVD
added 2025/03/24 7:15 p.m.9 views

CVE-2025-2707

A vulnerability, which was classified as critical, has been found in zhijiantianya ruoyi-vue-pro 2.4.1. Affected by this issue is some unknown functionality of the file /app-api/infra/file/upload of the component Front-End Store Interface. The manipulation of the argument path leads to path...

9.1CVSS0.00809EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/03/24 12:0 a.m.4 views

PT-2025-12574 · Unknown · Zhijiantianya Ruoyi-Vue-Pro

Name of the Vulnerable Software and Affected Versions: zhijiantianya ruoyi-vue-pro version 2.4.1 Description: A critical vulnerability was found in the Backend File Upload Interface of zhijiantianya ruoyi-vue-pro. This affects an unknown part of the file "/admin-api/infra/file/upload" and allows...

9.1CVSS5.3AI score0.00809EPSS
Exploits1References12
NVD
NVD
added 2025/03/06 8:15 p.m.17 views

CVE-2025-2040

A vulnerability classified as critical was found in zhijiantianya ruoyi-vue-pro 2.4.1. Affected by this vulnerability is an unknown functionality of the file /admin-api/bpm/model/deploy. The manipulation leads to improper neutralization of special elements used in a template engine. The attack ca...

6.5CVSS0.0043EPSS
Exploits1References4
Rows per page
Query Builder