Lucene search
+L

11 matches found

redhatcve
redhatcve
added 2025/08/13 10:33 a.m.17 views

CVE-2025-8841

A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this vulnerability is the function Upload of the file zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java. The manipulation leads to unrestricted upload. The attack can be...

6.5CVSS7.2AI score0.00298EPSS
Exploits1References1
nvd
nvd
added 2025/08/11 10:15 a.m.9 views

CVE-2025-8841

A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this vulnerability is the function Upload of the file zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java. The manipulation leads to unrestricted upload. The attack can be...

6.5CVSS0.00298EPSS
Exploits1References5
cvelist
cvelist
added 2025/08/11 10:2 a.m.14 views

CVE-2025-8841 zlt2000 microservices-platform FileController.java upload unrestricted upload

A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this vulnerability is the function Upload of the file zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java. The manipulation leads to unrestricted upload. The attack can be...

6.5CVSS0.00298EPSS
Exploits1References5
cve
cve
added 2025/08/11 10:2 a.m.25 views

CVE-2025-8841

CVE-2025-8841 affects zlt2000 microservices-platform up to version 6.0.0. The vulnerability resides in the Upload function of zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java and enables unrestricted file uploads. Attack can be launched remotely, and public d...

6.5CVSS7.1AI score0.00298EPSS
Exploits1References5Affected Software1
osv
osv
added 2025/08/11 10:2 a.m.3 views

CVE-2025-8841 zlt2000 microservices-platform FileController.java upload unrestricted upload

A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this vulnerability is the function Upload of the file zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java. The manipulation leads to unrestricted upload. The attack can be...

5.3CVSS6AI score0.00298EPSS
Exploits1References7
redhatcve
redhatcve
added 2025/08/10 8:28 p.m.15 views

CVE-2025-8737

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirecturl leads to open...

5.1CVSS7.2AI score0.00232EPSS
Exploits0References1
nvd
nvd
added 2025/08/08 8:15 p.m.8 views

CVE-2025-8737

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirecturl leads to open...

5.1CVSS0.00232EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/08/08 8:2 p.m.5 views

CVE-2025-8738 zlt2000 microservices-platform Spring Actuator Interface actuator information disclosure

A vulnerability has been found in zlt2000 microservices-platform up to 6.0.0 and classified as problematic. This vulnerability affects unknown code of the file /actuator of the component Spring Actuator Interface. The manipulation leads to information disclosure. The attack can be initiated...

6.9CVSS7AI score0.00369EPSS
Exploits0References5
cve
cve
added 2025/08/08 8:2 p.m.19 views

CVE-2025-8738

CVE-2025-8738 affects zlt2000 microservices-platform

6.9CVSS7AI score0.00369EPSS
Exploits0References5
cve
cve
added 2025/08/08 7:32 p.m.18 views

CVE-2025-8737

The CVE-2025-8737 entry concerns zlt2000 microservices-platform (up to 6.0.0). A vulnerability exists in the onLogoutSuccess function (OauthLogoutSuccessHandler.java) where manipulating the redirect_url argument causes an open redirect. Exploitation can be performed remotely, and public disclosur...

5.1CVSS7.1AI score0.00232EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2025/08/08 12:0 a.m.11 views

PT-2025-32408 · Unknown · Zlt2000 Microservices-Platform

Name of the Vulnerable Software and Affected Versions: zlt2000 microservices-platform versions through 6.0.0 Description: A problematic issue exists in zlt2000 microservices-platform. The issue is related to an open redirect vulnerability within the onLogoutSuccess function located in the file...

5.1CVSS6.8AI score0.00232EPSS
Exploits0References9
Rows per page
Query Builder