Lucene search
+L

224 matches found

NVD
NVD
added 2025/05/31 6:15 p.m.12 views

CVE-2025-5388

A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...

9.8CVSS0.00294EPSS
Exploits0References3
OSV
OSV
added 2025/05/31 6:15 p.m.6 views

CVE-2025-5387

A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...

9.8CVSS5.3AI score0.00287EPSS
Exploits0References3
NVD
NVD
added 2025/05/31 6:15 p.m.13 views

CVE-2025-5387

A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...

9.8CVSS0.00287EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/31 6:0 p.m.5 views

CVE-2025-5388 JeeWMS generateController.do dogenerate sql injection

A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...

6.5CVSS6.8AI score0.00294EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/31 6:0 p.m.20 views

CVE-2025-5388 JeeWMS generateController.do dogenerate sql injection

A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...

6.5CVSS0.00294EPSS
Exploits0References3
CVE
CVE
added 2025/05/31 6:0 p.m.54 views

CVE-2025-5388

CVE-2025-5388 affects JeeWMS up to 20250504, specifically the vulnerable function dogenerate in the endpoint "/generateController.do?dogenerate". Affects remote exploitation via SQL injection resulting from this function. Several connected sources corroborate the same vulnerability details and in...

9.8CVSS7AI score0.00294EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/05/31 5:31 p.m.25 views

CVE-2025-5387 JeeWMS File generateController.do dogenerate access control

A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...

6.5CVSS0.00287EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/31 5:31 p.m.7 views

CVE-2025-5387 JeeWMS File generateController.do dogenerate access control

A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...

6.5CVSS6.4AI score0.00287EPSS
Exploits0References3
CVE
CVE
added 2025/05/31 5:31 p.m.60 views

CVE-2025-5387

CVE-2025-5387 affects JeeWMS up to 20250504. The vulnerable component is the File Handler’s function dogenerate in /generateController.do?dogenerate, where improper access controls could allow remote exploitation. The product uses a rolling release, so no specific affected or fixed version detail...

9.8CVSS6.4AI score0.00287EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/05/31 5:15 p.m.11 views

CVE-2025-5386

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...

9.8CVSS0.00273EPSS
Exploits0References3
OSV
OSV
added 2025/05/31 5:15 p.m.10 views

CVE-2025-5386

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...

9.8CVSS5.6AI score0.00273EPSS
Exploits0References3
NVD
NVD
added 2025/05/31 5:15 p.m.11 views

CVE-2025-5385

A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...

9.8CVSS0.00398EPSS
Exploits0References3
OSV
OSV
added 2025/05/31 5:15 p.m.6 views

CVE-2025-5385

A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...

9.8CVSS5.4AI score0.00398EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/31 5:0 p.m.7 views

CVE-2025-5386 JeeWMS cgformTransController.do transEditor sql injection

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...

6.5CVSS6.6AI score0.00273EPSS
Exploits0References3
CVE
CVE
added 2025/05/31 5:0 p.m.59 views

CVE-2025-5386

CVE-2025-5386 affects JeeWMS up to 20250504, specifically the vulnerable transEditor function in the file /cgformTransController.do?transEditor. The issue enables SQL injection via that endpoint and can be triggered remotely. Public details acknowledge no versioning in JeeWMS, so affected/unaffec...

9.8CVSS6.7AI score0.00273EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/05/31 5:0 p.m.20 views

CVE-2025-5386 JeeWMS cgformTransController.do transEditor sql injection

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...

6.5CVSS0.00273EPSS
Exploits0References3
CVE
CVE
added 2025/05/31 4:31 p.m.54 views

CVE-2025-5385

The CVE-2025-5385 vulnerability affects JeeWMS (up to 20250504) in the doAdd handler of /cgformTemplateController.do?doAdd, enabling path traversal when handling input. The issue is exploitable remotely and has a high impact described across multiple sources; no public fix version is provided. Pr...

9.8CVSS6.4AI score0.00398EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/05/31 4:31 p.m.20 views

CVE-2025-5385 JeeWMS cgformTemplateController.do doAdd path traversal

A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...

6.5CVSS0.00398EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/31 4:31 p.m.9 views

CVE-2025-5385 JeeWMS cgformTemplateController.do doAdd path traversal

A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...

6.5CVSS6.4AI score0.00398EPSS
Exploits0References3
NVD
NVD
added 2025/05/31 4:15 p.m.11 views

CVE-2025-5384

A vulnerability was found in JeeWMS up to 20250504. It has been classified as critical. This affects the function CgAutoListController of the file /cgAutoListController.do?datagrid. The manipulation leads to sql injection. It is possible to initiate the attack remotely. This product takes the...

9.8CVSS0.00273EPSS
Exploits0References3
Rows per page
Query Builder