CVE-2025-0704

Medium CVSS: 6.9

A vulnerability, which was classified as problematic, was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. Affected is the function qrCode of the file src/main/java/io/github/controller/QrCodeController.java. The manipulation of the argument w/h leads to resource consumption. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

Vendor

Joeybling

Product

Bootplus

CWE

CWE-400

Yayın Tarihi

2025-01-24 19:15:13

Güncelleme

2025-10-10 19:04:33

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-400 Bootplus MEDIUM Joeybling 2025

Referanslar

https://github.com/JoeyBling/bootplus/issues/26 https://github.com/JoeyBling/bootplus/issues/26#issue-2786934642 https://vuldb.com/?ctiid.293232 https://vuldb.com/?id.293232 https://vuldb.com/?submit.480843

Benzer Kayıtlar

Medium

CVE-2025-0706

A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problem…

Medium

CVE-2025-0703

A vulnerability, which was classified as problematic, has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0…

Medium

CVE-2025-0705

A vulnerability has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as pr…

Medium

CVE-2025-0702

A vulnerability classified as critical was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. T…

Medium

CVE-2025-0700

A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. It has been rated as cri…

Medium

CVE-2025-0701

A vulnerability classified as critical has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf5…