CVE-2025-14521
- EPSS 0.14%
- Veröffentlicht 11.12.2025 16:16:23
- Zuletzt bearbeitet 09.01.2026 01:54:07
A security vulnerability has been detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The affected element is an unknown function of the file /admin/index.php/datafile/download. Such manipulation of the argument filename leads to ...
CVE-2025-14522
- EPSS 0.05%
- Veröffentlicht 11.12.2025 16:16:23
- Zuletzt bearbeitet 09.01.2026 01:50:16
A vulnerability was detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The impacted element is an unknown function of the file /Public/Kindeditor/php/upload_json.php. Performing manipulation of the argument imgFile results in unr...
CVE-2025-14520
- EPSS 0.14%
- Veröffentlicht 11.12.2025 15:32:10
- Zuletzt bearbeitet 09.01.2026 01:58:27
A weakness has been identified in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. Impacted is an unknown function of the file /admin/index.php/datafile/delfile. This manipulation of the argument filename causes path traversal. The attack ...
CVE-2025-14519
- EPSS 0.04%
- Veröffentlicht 11.12.2025 15:15:47
- Zuletzt bearbeitet 06.01.2026 14:36:39
A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross ...