VYPR

Platform

by Fuyang Lipengjun

Source repositories

CVEs (13)

  • CVE-2025-10086MedSep 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in fuyang_lipengjun platform 1.0.0. This issue affects the function queryAll of the file /adposition/queryAll of the component AdPositionController. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit…

  • CVE-2025-7936MedJul 21, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a and classified as critical. Affected by this vulnerability is the function queryPage of the file com/platform/controller/ScheduleJobLogController.java. The manipulation of…

  • CVE-2025-7935MedJul 21, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability, which was classified as critical, was found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a. Affected is the function SysLogController of the file platform-admin/src/main/java/com/platform/controller/SysLogController.java. The…

  • CVE-2025-7934MedJul 21, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability, which was classified as critical, has been found in fuyang_lipengjun platform up to ca9aceff6902feb7b0b6bf510842aea88430796a. This issue affects the function queryPage of the file platform-schedule/src/main/java/com/platform/controller/ScheduleJobController.java.…

  • CVE-2025-10822MedSep 23, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in fuyang_lipengjun platform 1.0. The impacted element is the function SysSmsLogController of the file /sys/smslog/queryAll. Such manipulation leads to improper authorization. The attack may be performed from remote. The exploit has been disclosed…

  • CVE-2025-10821MedSep 22, 2025
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in fuyang_lipengjun platform 1.0. The affected element is the function TopicCategoryController of the file /topiccategory/queryAll. This manipulation causes improper authorization. The attack is possible to be carried out remotely. The exploit has been…

  • CVE-2025-10820MedSep 22, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was detected in fuyang_lipengjun platform 1.0. Impacted is the function TopicController of the file /topic/queryAll. The manipulation results in improper authorization. The attack can be executed remotely. The exploit is now public and may be used.

  • CVE-2025-10819MedSep 22, 2025
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in fuyang_lipengjun platform 1.0. This issue affects the function UserCouponController of the file /usercoupon/queryAll. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit has…

  • CVE-2025-10676MedSep 18, 2025
    risk 0.28cvss 4.3epss 0.00

    A weakness has been identified in fuyang_lipengjun platform 1.0. Affected is the function BrandController of the file /brand/queryAll. Executing manipulation can lead to improper authorization. The attack can be executed remotely. The exploit has been made available to the…

  • CVE-2025-10675MedSep 18, 2025
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in fuyang_lipengjun platform 1.0. This impacts the function AttributeController of the file /attribute/queryAll. Performing manipulation results in improper authorization. Remote exploitation of the attack is possible. The exploit has been…

  • CVE-2025-10674MedSep 18, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in fuyang_lipengjun platform 1.0. This affects the function AttributeCategoryController of the file /attributecategory/queryAll. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit is publicly…

  • CVE-2025-9936MedSep 4, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in fuyang_lipengjun platform 1.0.0. This issue affects the function AdController of the file /ad/queryAll. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available and…

  • CVE-2024-41806MedJul 25, 2024
    risk 0.27cvss 5.3epss 0.00

    The Open edX Platform is a learning management platform. Instructors can upload csv files containing learner information to create cohorts in the instructor dashboard. These files are uploaded using the django default storage. With certain storage backends, uploads may become…