VYPR

Sz Boot Parent

by Feiyuchuixue

Source repositories

CVEs (4)

  • CVE-2026-3187MedFeb 25, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this issue is some unknown functionality of the file /api/admin/sys-file/upload of the component API Endpoint. Such manipulation leads to unrestricted upload. The attack may be launched…

  • CVE-2026-3186MedFeb 25, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was determined in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this vulnerability is an unknown functionality of the file /api/admin/sys-user/reset/password/ of the component Password Reset Handler. This manipulation of the argument userId causes use…

  • CVE-2026-3189LowFeb 25, 2026
    risk 0.20cvss 3.1epss 0.00

    A weakness has been identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This vulnerability affects unknown code of the file /api/admin/common/files/download. Executing a manipulation of the argument url can lead to server-side request forgery. The attack can be executed…

  • CVE-2026-3185Feb 25, 2026
    risk 0.00cvss epss 0.00

    A vulnerability was found in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected is an unknown function of the file /api/admin/sys-message/ of the component API Endpoint. The manipulation of the argument messageId results in authorization bypass. The attack can be launched…

VYPR — Vulnerability Intelligence