VYPR
Vendor

Kujirahand

Products
5
CVEs
10
Across products
10
Status
Private

Products

5

Recent CVEs

10
  • CVE-2025-55037CriSep 5, 2025
    risk 0.57cvss 9.8epss 0.03

    Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are…

  • CVE-2025-55671HigSep 5, 2025
    risk 0.44cvss 7.8epss 0.00

    Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program.

  • CVE-2022-41777Dec 5, 2022
    risk 0.00cvss epss 0.01

    Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash.

  • CVE-2022-42496Dec 5, 2022
    risk 0.00cvss epss 0.02

    OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product.

  • CVE-2022-41642Dec 5, 2022
    risk 0.00cvss epss 0.02

    OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product.

  • CVE-2021-20721May 20, 2021
    risk 0.00cvss epss 0.02

    KonaWiki2 versions prior to 2.2.4 allows a remote attacker to upload arbitrary files via unspecified vectors. If the file contains PHP scripts, arbitrary code may be executed.

  • CVE-2021-20720May 20, 2021
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in the KonaWiki2 versions prior to 2.2.4 allows remote attackers to execute arbitrary SQL commands and to obtain/alter the information stored in the database via unspecified vectors.

  • CVE-2020-5614Jul 29, 2020
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors.

  • CVE-2020-5613Jul 29, 2020
    risk 0.00cvss epss 0.01

    Cross-site scripting vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to execute an arbitrary script via a specially crafted URL.

  • CVE-2020-5612Jul 29, 2020
    risk 0.00cvss epss 0.01

    Cross-site scripting vulnerability in KonaWiki 2.2.0 and earlier allows remote attackers to execute an arbitrary script via a specially crafted URL.