224 matches found
EUVD-2024-53728
Malicious code in bioql PyPI...
CVE-2025-55834
A Cross Site Scripting vulnerability in JeeWMS v.3.7 and before allows a remote attacker to obtain sensitive information via the logController.do component...
CVE-2025-55834
CVE-2025-55834: A Cross Site Scripting vulnerability in JeeWMS v3.7 and earlier exists due to improper handling in logController.do, potentially exposing sensitive information. Affected: JeeWMS prior to 3.8. Impact is information disclosure (per sources). Remediation: upgrade to JeeWMS 3.8 or lat...
CVE-2025-55834
A Cross Site Scripting vulnerability in JeeWMS v.3.7 and before allows a remote attacker to obtain sensitive information via the logController.do component...
CVE-2025-55834
A Cross Site Scripting vulnerability in JeeWMS v.3.7 and before allows a remote attacker to obtain sensitive information via the logController.do component...
JeeWMS 安全漏洞
JeeWMS is a JAVA-based warehouse management system . A cross-site scripting vulnerability exists in JeeWMS 3.7 and earlier versions, which stems from the lack of effective filtering and escaping of user-supplied data by the logController.do component, and can be exploited by an attacker to disclo...
PT-2025-37948
Name of the Vulnerable Software and Affected Versions: JeeWMS versions prior to 3.8 Description: A Cross Site Scripting issue exists in JeeWMS versions prior to 3.8, potentially allowing a remote attacker to obtain sensitive information via the logController.do component. Recommendations: Update ...
CVE-2024-53499
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API...
CVE-2024-53499
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API...
CVE-2024-53499
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API...
CVE-2025-50901
JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 2025-05-19 contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading...
CVE-2024-53499
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API...
CVE-2024-53499
Jeewms v3.7 contains a SQL injection vulnerability in the CgReportController API endpoint. The issue is caused by unsafe handling in the CgReportController, leading to high-severity impact (C, I, A) with CVSS 3.1 score 9.8 (NETWORK, NO AUTH, NO USER INTERACTION). The CVE listing and connected sou...
PT-2025-34471 · Jeewms · Jeewms
Name of the Vulnerable Software and Affected Versions: Jeewms version 3.7 Description: Jeewms version 3.7 contains a SQL injection vulnerability via the CgReportController API. The vulnerability is located in the CgReportController API endpoint. Recommendations: At the moment, there is no...
CVE-2024-53499
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API...
JeeWMS 安全漏洞
JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS version 3.7, which originates from SQL injection in the CgReportController API...
CVE-2025-50901
JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 2025-05-19 contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading...
CVE-2025-50901
JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 2025-05-19 contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading...
JeeWMS 安全漏洞
JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS, which stems from an authentication bypass that could lead to arbitrary file reading...
CVE-2025-50901
JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 2025-05-19 contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading...