Ruifang-tech

Rebuild

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-28056

Exploit
  • EPSS 0.1%
  • Veröffentlicht 13.05.2025 00:00:00
  • Zuletzt bearbeitet 23.06.2025 18:07:03

rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component.

5.3

CVE-2024-12995

  • EPSS 0.03%
  • Veröffentlicht 28.12.2024 14:15:22
  • Zuletzt bearbeitet 28.12.2024 14:15:22

A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This affects an unknown part of the file /project/050-9000000000000001/tasks of the component Project Tasks Section. The manipulation of the argument description ...

5.3

CVE-2024-12990

  • EPSS 0.16%
  • Veröffentlicht 27.12.2024 18:15:25
  • Zuletzt bearbeitet 27.12.2024 19:15:08

A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic. This affects an unknown part of the file /user/admin-verify of the component Admin Verification Page. The manipulation of the argument nexturl with the in...

5.4

CVE-2024-12664

Exploit
  • EPSS 0.12%
  • Veröffentlicht 16.12.2024 20:15:09
  • Zuletzt bearbeitet 19.12.2024 14:55:00

A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comment Handler. The manipulation leads to cross site scripting. The attack m...

5.4

CVE-2024-12665

Exploit
  • EPSS 0.18%
  • Veröffentlicht 16.12.2024 20:15:09
  • Zuletzt bearbeitet 19.12.2024 14:55:20

A vulnerability, which was classified as problematic, was found in ruifang-tech Rebuild 3.8.5. Affected is an unknown function of the component Task Comment Attachment Upload. The manipulation leads to cross site scripting. It is possible to launch t...

7.5

CVE-2024-1098

Exploit
  • EPSS 0.25%
  • Veröffentlicht 31.01.2024 12:16:04
  • Zuletzt bearbeitet 21.11.2024 08:49:47

A vulnerability was found in Rebuild up to 3.5.5 and classified as problematic. This issue affects the function QiniuCloud.getStorageFile of the file /filex/proxy-download. The manipulation of the argument url leads to information disclosure. The exp...

5.4

CVE-2024-1099

Exploit
  • EPSS 0.23%
  • Veröffentlicht 31.01.2024 12:16:04
  • Zuletzt bearbeitet 21.11.2024 08:49:47

A vulnerability was found in Rebuild up to 3.5.5. It has been classified as problematic. Affected is the function getFileOfData of the file /filex/read-raw. The manipulation of the argument url leads to cross site scripting. It is possible to launch ...

6.1

CVE-2024-1020

Exploit
  • EPSS 0.17%
  • Veröffentlicht 29.01.2024 22:15:08
  • Zuletzt bearbeitet 21.11.2024 08:49:36

A vulnerability classified as problematic was found in Rebuild up to 3.5.5. Affected by this vulnerability is the function getStorageFile of the file /filex/proxy-download. The manipulation of the argument url leads to cross site scripting. The attac...

9.8

CVE-2024-1021

Exploit
  • EPSS 92.9%
  • Veröffentlicht 29.01.2024 22:15:08
  • Zuletzt bearbeitet 21.11.2024 08:49:37

A vulnerability, which was classified as critical, has been found in Rebuild up to 3.5.5. Affected by this issue is the function readRawText of the component HTTP Request Handler. The manipulation of the argument url leads to server-side request forg...

9.8

CVE-2023-1612

Exploit
  • EPSS 0.23%
  • Veröffentlicht 23.03.2023 21:15:19
  • Zuletzt bearbeitet 21.11.2024 07:39:32

A vulnerability, which was classified as critical, was found in Rebuild up to 3.2.3. This affects an unknown part of the file /files/list-file. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has b...