Browse all 6 CVE security advisories affecting lostvip-com. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Lostvip-com operates as a VIP membership platform with core functionality centered around exclusive content access and premium user services. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its six recorded CVEs. These vulnerabilities often stem from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing security challenges that could potentially lead to unauthorized access or system compromise if not properly addressed.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10218 | lostvip-com ruoyi-go Background Management SysRoleDao.go SelectListPage sql injection — ruoyi-goCWE-89 | 6.3 | Medium | 2025-09-10 |
| CVE-2025-9413 | lostvip-com ruoyi-go system_router.go SelectListByPage sql injection — ruoyi-goCWE-89 | 6.3 | Medium | 2025-08-25 |
| CVE-2025-9412 | lostvip-com ruoyi-go DictDataDao.go SelectListByPage sql injection — ruoyi-goCWE-89 | 6.3 | Medium | 2025-08-25 |
| CVE-2025-9411 | lostvip-com ruoyi-go LoginInforService.go SelectPageList sql injection — ruoyi-goCWE-89 | 6.3 | Medium | 2025-08-25 |
| CVE-2025-9410 | lostvip-com ruoyi-go GenTableDao.go SelectListByPage sql injection — ruoyi-goCWE-89 | 6.3 | Medium | 2025-08-25 |
| CVE-2025-9409 | lostvip-com ruoyi-go CommonController.go DownloadUpload path traversal — ruoyi-goCWE-22 | 4.3 | Medium | 2025-08-25 |
This page lists every published CVE security advisory associated with lostvip-com. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.