VYPR
Vendor

Xiaoyunjie

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2025-6776HigJun 27, 2025
    risk 0.47cvss 7.3epss 0.01

    A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7. This vulnerability affects the function Upload of the file app/plugins/oss/app/controller.py of the component File Upload. The manipulation of the argument image leads to path…

  • CVE-2025-6775MedJun 27, 2025
    risk 0.41cvss 6.3epss 0.04

    A vulnerability classified as critical has been found in xiaoyunjie openvpn-cms-flask up to 1.2.7. This affects the function create_user of the file /app/api/v1/openvpn.py of the component User Creation Endpoint. The manipulation of the argument Username leads to command…