Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2025-32951
- EPSS 0.38%
- Veröffentlicht 22.04.2025 17:32:23
- Zuletzt bearbeitet 31.12.2025 15:57:34
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, the input parameter, which consists of a file path and name, can be manipulated to return the Content-Ty...
6.5
CVE-2025-32952
- EPSS 0.73%
- Veröffentlicht 22.04.2025 17:32:11
- Zuletzt bearbeitet 31.12.2025 15:55:53
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, the local file storage implementation does not restrict the size of uploaded files. An attacker could ex...
5.4
CVE-2018-20663
- EPSS 0.21%
- Veröffentlicht 03.01.2019 19:29:01
- Zuletzt bearbeitet 21.11.2024 04:01:57
The Reporting Addon (aka Reports Addon) through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports > Reports" name field.
1