CVE-2024-35083

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysLoginInfoMapper.xml...

PT-2024-26314 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function within ProcessDefinitionMapper.xml. Recommendations: For J2EEFAST version 2.7.0, consider restricting access to the findPage function in...

PT-2024-26311 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was discovered via the findPage function in SysOperLogMapper.xml. This allows for potential exploitation. No information is provided about the estimated number of affected devices or...

PT-2024-26313 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function within SysMsgPushMapper.xml. Recommendations: For J2EEFAST version 2.7.0, consider restricting access to the findPage function in SysMsgPushMapper.xm...