CVE-2025-14521
- EPSS 0.49%
- Veröffentlicht 11.12.2025 16:16:23
- Zuletzt bearbeitet 29.04.2026 01:00:01
A security vulnerability has been detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The affected element is an unknown function of the file /admin/index.php/datafile/download. Such manipulation of the argument filename leads to ...
CVE-2025-14522
- EPSS 0.26%
- Veröffentlicht 11.12.2025 16:16:23
- Zuletzt bearbeitet 29.04.2026 01:00:01
A vulnerability was detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The impacted element is an unknown function of the file /Public/Kindeditor/php/upload_json.php. Performing manipulation of the argument imgFile results in unr...
CVE-2025-14520
- EPSS 0.54%
- Veröffentlicht 11.12.2025 15:32:10
- Zuletzt bearbeitet 29.04.2026 01:00:01
A weakness has been identified in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. Impacted is an unknown function of the file /admin/index.php/datafile/delfile. This manipulation of the argument filename causes path traversal. The attack ...
CVE-2025-14519
- EPSS 0.22%
- Veröffentlicht 11.12.2025 15:15:47
- Zuletzt bearbeitet 29.04.2026 01:00:01
A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross ...