Development

CVE ID : CVE-2025-5544

Published : June 3, 2025, 11:15 p.m. | 3 hours, 8 minutes ago

Description : A vulnerability was found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5545

Published : June 4, 2025, 12:15 a.m. | 2 hours, 8 minutes ago

Description : A vulnerability classified as problematic has been found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5546

Published : June 4, 2025, 12:15 a.m. | 2 hours, 8 minutes ago

Description : A vulnerability classified as critical was found in PHPGurukul Daily Expense Tracker System 1.1. This vulnerability affects unknown code of the file /expense-reports-detailed.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5547

Published : June 4, 2025, 12:15 a.m. | 2 hours, 8 minutes ago

Description : A vulnerability, which was classified as critical, has been found in FreeFloat FTP Server 1.0. This issue affects some unknown processing of the component CDUP Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5548

Published : June 4, 2025, 1:15 a.m. | 1 hour, 8 minutes ago

Description : A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. Affected is an unknown function of the component NOOP Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5550

Published : June 4, 2025, 1:15 a.m. | 1 hour, 8 minutes ago

Description : A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. Affected by this issue is some unknown functionality of the component PBSZ Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-5549

Published : June 4, 2025, 1:15 a.m. | 1 hour, 8 minutes ago

Description : A vulnerability has been found in FreeFloat FTP Server 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component PASV Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Ever feel like your AI tools are a bit…well, passive? Like they just sit there, waiting for your next command?…

Our 211th episode with a summary and discussion of last week’s big AI news!Recorded on 05/31/2025 Hosted by Andrey Kurenkov…

Gemini 2.5 has new capabilities in AI-powered audio dialog and generation. Source: Read More 

Comments Source: Read More 

Why Conversion Rate Optimization is The Most Important Investment You Need to Make in 2025 Imagine you’ve just opened a…

As we move through 2025, artificial intelligence — especially generative AI — continues to redefine how enterprises operate and compete.…

Perficient embraces a culture of continuous learning by providing opportunities for our colleagues to enhance their skillset and drive exponential…

With the advancement of technology, machine learning and AI capabilities in the customer care space, customer expectations are evolving faster…

Do you have online accounts you haven’t used in years? If so, a bit of digital spring cleaning might be…

Threat hunters are alerting to a new campaign that employs deceptive websites to trick unsuspecting users into executing malicious PowerShell…

SafePay’s journey to the top of the ransomware leaderboard was a quick one. The SafePay ransomware group first emerged in…

Product and engineering leaders face a constant battle: making crucial real-time decisions amidst a sea of fragmented, reactive, and disconnected…

Across industries, mainframe teams are under pressure to meet SLAs, modernize operations, and reduce costs, all while managing growing complexity…