22 matches found
CVE-2025-1847
A vulnerability was found in zj1983 zz up to 2024-8. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was...
CVE-2025-1848
A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...
CVE-2025-1820
A vulnerability has been found in zj1983 zz up to 2024-8 and classified as critical. Affected by this vulnerability is the function getOaWid of the file src/main/java/com/futvan/z/system/zworkflow/ZworkflowAction.java. The manipulation of the argument tableId leads to sql injection. The attack ca...
EUVD-2025-5849
Malicious code in bioql PyPI...
CVE-2025-1849
A vulnerability classified as critical was found in zj1983 zz up to 2024-8. Affected by this vulnerability is an unknown functionality of the file /importdatatodb. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been...
CVE-2025-1849
A vulnerability classified as critical was found in zj1983 zz up to 2024-8. Affected by this vulnerability is an unknown functionality of the file /importdatatodb. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been...
CVE-2025-1848
A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...
CVE-2025-1849
A vulnerability classified as critical was found in zj1983 zz up to 2024-8. Affected by this vulnerability is an unknown functionality of the file /importdatatodb. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been...
CVE-2025-1848 zj1983 zz import_data_check server-side request forgery
A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...
CVE-2025-1847
A vulnerability was found in zj1983 zz up to 2024-8. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was...
CVE-2025-1847
A vulnerability was found in zj1983 zz up to 2024-8. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was...
PT-2025-9257 · Zj1983 · Zj1983
Name of the Vulnerable Software and Affected Versions: zj1983 zz up to 2024-8 Description: A critical issue affects some unknown processing in zj1983 zz, leading to improper authorization. The manipulation can be initiated remotely. The exploit has been disclosed to the public and may be used. Th...
PT-2025-9268 · Zj1983 Zz · Zj1983 Zz
Name of the Vulnerable Software and Affected Versions: zj1983 zz versions up to 2024-8 Description: A critical vulnerability has been found in the affected software. The issue is related to an unknown function of the file /import data check, where the manipulation of the url argument leads to...
CVE-2025-1834
A vulnerability, which was classified as critical, was found in zj1983 zz up to 2024-8. This affects an unknown part of the file /resolve. The manipulation of the argument file leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-1834 zj1983 zz resolve unrestricted upload
A vulnerability, which was classified as critical, was found in zj1983 zz up to 2024-8. This affects an unknown part of the file /resolve. The manipulation of the argument file leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-1832
CVE-2025-1832 affects the function getUserList in src/main/java/com/futvan/z/system/zrole/ZroleAction.java of zj1983 zz up to 2024-8. The vulnerability arises from manipulation of the roleid argument, leading to SQL injection. Exploitation is network-accessible and was disclosed publicly, enablin...
CVE-2025-1820
The CVE-2025-1820 entry concerns zj1983 zz (up to 2024-8). Affected is the function getOaWid in src/main/java/com/futvan/z/system/zworkflow/ZworkflowAction.java, where manipulation of the tableId argument enables SQL injection. The vulnerability is exploitable remotely and has public exploits; mu...
CVE-2025-1813
A vulnerability classified as problematic was found in zj1983 zz up to 2024-08. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The...
CVE-2025-1813 zj1983 zz cross-site request forgery
A vulnerability classified as problematic was found in zj1983 zz up to 2024-08. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The...
CVE-2025-1813
CVE-2025-1813 affects zj1983 zz up to 2024-08 with a cross-site request forgery vulnerability. Publicly disclosed exploit and remote attack possibility are noted across multiple sources (NVD, Red Hat CVE, CVE lists). The exact vulnerable component/version scope is not specified beyond “unknown fu...