aitangbao CVE 脆弱性と CVE 一覧(10)

製品(CPE): — CVE 件数: 10

aitangbao 脆弱性概要

aitangbao 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。

一般的な弱点パターンには vendor risk cross-site scripting があり、vendor surface production workloads and vendor surface software deployment の利用場面で vendor impact session compromise などのリスクが生じる可能性があります。

掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。

脆弱性分布の推移(直近24か月)

表示中 110 / 10 CVE 件数
«« 先頭 « 前へ 1 / 1 次へ »
CVE 概要 ソース CVSS 最大値 EPSS(%) 公開 更新
CVE-2025-2211 A vulnerability was found in aitangbao springboot-manager 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /sysDictDetail/add. The manipulation of the argument name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.45% 2025-03-11 2026-06-17
CVE-2025-2210 A vulnerability has been found in aitangbao springboot-manager 3.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /sysJob/add. The manipulation of the argument name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.45% 2025-03-11 2026-06-17
CVE-2025-2209 A vulnerability, which was classified as problematic, was found in aitangbao springboot-manager 3.0. Affected is an unknown function of the file /sysDict/add. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.45% 2025-03-11 2026-06-17
CVE-2025-2208 A vulnerability, which was classified as problematic, has been found in aitangbao springboot-manager 3.0. This issue affects some unknown processing of the file /sysFiles/upload of the component Filename Handler. The manipulation of the argument name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.47% 2025-03-11 2026-06-17
CVE-2025-2207 A vulnerability classified as problematic was found in aitangbao springboot-manager 3.0. This vulnerability affects unknown code of the file /sys/dept. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.47% 2025-03-11 2026-06-17
CVE-2025-2206 A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0. This affects an unknown part of the file /sys/permission. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. [email protected] 4.8 0.47% 2025-03-11 2026-06-17
CVE-2024-24062 springboot-manager v1.6 is vulnerable to Cross Site Scripting (XSS) via /sys/role. [email protected] 5.4 0.42% 2024-02-01 2026-06-17
CVE-2024-24061 springboot-manager v1.6 is vulnerable to Cross Site Scripting (XSS) via /sysContent/add. [email protected] 5.4 0.39% 2024-02-01 2026-06-17
CVE-2024-24060 springboot-manager v1.6 is vulnerable to Cross Site Scripting (XSS) via /sys/user. [email protected] 5.4 0.40% 2024-02-01 2026-06-17
CVE-2024-24059 springboot-manager v1.6 is vulnerable to Arbitrary File Upload. The system does not filter the suffixes of uploaded files. [email protected] 5.4 0.42% 2024-02-01 2026-06-17
«« 先頭 « 前へ 1 / 1 次へ »
cvelogic Threat Intelligence