Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2
CVE-2026-28674
- EPSS 0.05%
- Veröffentlicht 18.03.2026 00:48:39
- Zuletzt bearbeitet 23.03.2026 17:57:34
xiaoheiFS is a self-hosted financial and operational system for cloud service businesses. In versions up to and including 0.3.15, the `AdminPaymentPluginUpload` endpoint lets admins upload any file to `plugins/payment/`. It only checks a hardcoded pa...
7.2
CVE-2026-28673
- EPSS 0.33%
- Veröffentlicht 18.03.2026 00:41:35
- Zuletzt bearbeitet 23.03.2026 17:58:19
xiaoheiFS is a self-hosted financial and operational system for cloud service businesses. In versions up to and including 0.3.15, the standard plugin system allows admins to upload a ZIP file containing a binary and a `manifest.json`. The server trus...
1