224 matches found
CVE-2025-5388
A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...
CVE-2025-5387
A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...
CVE-2025-5387
A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...
CVE-2025-5388 JeeWMS generateController.do dogenerate sql injection
A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...
CVE-2025-5388 JeeWMS generateController.do dogenerate sql injection
A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of...
CVE-2025-5388
CVE-2025-5388 affects JeeWMS up to 20250504, specifically the vulnerable function dogenerate in the endpoint "/generateController.do?dogenerate". Affects remote exploitation via SQL injection resulting from this function. Several connected sources corroborate the same vulnerability details and in...
CVE-2025-5387 JeeWMS File generateController.do dogenerate access control
A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...
CVE-2025-5387 JeeWMS File generateController.do dogenerate access control
A vulnerability classified as critical has been found in JeeWMS up to 20250504. Affected is the function dogenerate of the file /generateController.do?dogenerate of the component File Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. This...
CVE-2025-5387
CVE-2025-5387 affects JeeWMS up to 20250504. The vulnerable component is the File Handler’s function dogenerate in /generateController.do?dogenerate, where improper access controls could allow remote exploitation. The product uses a rolling release, so no specific affected or fixed version detail...
CVE-2025-5386
A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...
CVE-2025-5386
A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...
CVE-2025-5385
A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...
CVE-2025-5385
A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...
CVE-2025-5386 JeeWMS cgformTransController.do transEditor sql injection
A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...
CVE-2025-5386
CVE-2025-5386 affects JeeWMS up to 20250504, specifically the vulnerable transEditor function in the file /cgformTransController.do?transEditor. The issue enables SQL injection via that endpoint and can be triggered remotely. Public details acknowledge no versioning in JeeWMS, so affected/unaffec...
CVE-2025-5386 JeeWMS cgformTransController.do transEditor sql injection
A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. Th...
CVE-2025-5385
The CVE-2025-5385 vulnerability affects JeeWMS (up to 20250504) in the doAdd handler of /cgformTemplateController.do?doAdd, enabling path traversal when handling input. The issue is exploitable remotely and has a high impact described across multiple sources; no public fix version is provided. Pr...
CVE-2025-5385 JeeWMS cgformTemplateController.do doAdd path traversal
A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...
CVE-2025-5385 JeeWMS cgformTemplateController.do doAdd path traversal
A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling...
CVE-2025-5384
A vulnerability was found in JeeWMS up to 20250504. It has been classified as critical. This affects the function CgAutoListController of the file /cgAutoListController.do?datagrid. The manipulation leads to sql injection. It is possible to initiate the attack remotely. This product takes the...