VYPR

Security Findings

by Mikecole Mg

Source repositories

CVEs (3)

  • CVE-2025-10669MedSep 18, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in Airsonic-Advanced up to 10.6.0. This vulnerability affects unknown code of the component Playlist Upload Handler. Performing manipulation results in unrestricted upload. It is possible to initiate the attack remotely. The exploit is now public and…

  • CVE-2025-12250MedOct 27, 2025
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in OpenWGA 7.11.12 Build 737. This affects an unknown function of the file WGA.File of the component TMLScript API. Executing manipulation can lead to path traversal. It is possible to launch the attack remotely. The exploit has been published and may be…

  • CVE-2025-12251LowOct 27, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in OpenWGA 7.11.12 Build 737. This impacts an unknown function of the component Admin UI. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor…

VYPR — Vulnerability Intelligence