5.1
CVE-2025-3592 - ZHENFENG13/code-projects My-Blog-layui edit cross site scripting
A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/v1/link/edit. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been discloseโฆ
5.1
CVE-2025-3591 - ZHENFENG13/code-projects My-Blog-layui edit cross site scripting
A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/v1/blog/edit. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been discโฆ
5.3
CVE-2025-3590 - Adianti Framework deserialization
A vulnerability has been found in Adianti Framework up to 8.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to deserialization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Upgradiโฆ
5.3
CVE-2025-3589 - SourceCodester Music Class Enrollment System manage_class.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Music Class Enrollment System 1.0. Affected is an unknown function of the file /manage_class.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has โฆ
5.4
CVE-2022-43850 - IBM Aspera Console cross-site scripting
IBM Aspera Console 3.4.0 through 3.4.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
4.3
CVE-2022-43840 - IBM Aspera Console XPath injection
IBM Aspera Console 3.4.0 through 3.4.4 is vulnerable to an XPath injection vulnerability, which could allow an authenticated attacker to exfiltrate sensitive application data and/or determine the structure of the XML document.
5.9
CVE-2022-43851 - IBM Aspera Console information disclosure
IBM Aspera Console 3.4.0 through 3.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
3.1
CVE-2023-27272 - IBM Aspera Console weak password requirements
IBM Aspera Console 3.4.0 through 3.4.4ย allows passwords to be reused when a new user logs into the system.
5.3
CVE-2022-43852 - IBM Aspera Console information disclosure
IBM Aspera Console 3.4.0 through 3.4.4ย could disclose sensitive information in HTTP headers that could be used in further attacks against the system.
4.8
CVE-2025-3588 - joelittlejohn jsonschema2pojo JSON File SchemaRule.java apply stack-based overflow
A vulnerability, which was classified as problematic, has been found in joelittlejohn jsonschema2pojo 1.2.2. This issue affects the function apply of the file org/jsonschema2pojo/rules/SchemaRule.java of the component JSON File Handler. The manipulation leads to stack-based buffer overflow. Attackiโฆ