0.0
CVE-2025-43899 -
Not used
0.0
CVE-2025-43900 -
Not used
0.0
CVE-2025-43901 -
Not used
0.0
CVE-2025-43894 -
Not used
0.0
CVE-2025-43895 -
Not used
0.0
CVE-2025-43893 -
Not used
4.8
CVE-2025-3791 - symisc UnQLite unqlite.c jx9MemObjStore heap-based overflow
A vulnerability classified as critical was found in symisc UnQLite up to 957c377cb691a4f617db9aba5cc46d90425071e2. This vulnerability affects the function jx9MemObjStore of the file /data/src/benchmarks/unqlite/unqlite.c. The manipulation leads to heap-based buffer overflow. It is possible to launcβ¦
6.9
CVE-2025-3790 - baseweb JSite Apache Druid Monitoring Console index.html access control
A vulnerability classified as critical has been found in baseweb JSite 1.0. This affects an unknown part of the file /druid/index.html of the component Apache Druid Monitoring Console. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit haβ¦
5.1
CVE-2025-3789 - baseweb JSite save cross site scripting
A vulnerability was found in baseweb JSite 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /a/sys/area/save. The manipulation of the argument Name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosβ¦
6.3
CVE-2025-32790 - Dify Allows Insecure User Role Access Control for APP DSL Exporting
Dify is an open-source LLM app development platform. In versions 0.6.8 and prior, a vulnerability was identified in the DIFY AI where normal users are improperly granted permissions to export APP DSL. The feature in '/export' should only allow administrator users to export DSL. A workaround for thiβ¦