Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Cvelist
Cvelistadded 2026/02/03 12:0 a.m.24 views

CVE-2025-70311

JEEWMS 1.0 is vulnerable to SQL Injection. Attackers can inject malicious SQL statements through the id1 and id2 parameters in the /systemControl.do interface for attack...

0.00017EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:39 a.m.7 views

CVE-2024-27765

Directory Traversal vulnerability in Jeewms v.3.7 and before allows a remote attacker to obtain sensitive information via the cgformTemplateController component...

7.5CVSS6.5AI score0.00307EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/04/17 3:15 a.m.12 views

CVE-2025-29213

A zip slip vulnerability in the component \service\migrate\MigrateForm.java of JEEWMS v3.7 allows attackers to execute arbitrary code via a crafted Zip file...

5.5CVSS7.8AI score0.00179EPSS
Exploits1References1
NVD
NVDadded 2025/04/15 7:16 p.m.11 views

CVE-2025-29213

A zip slip vulnerability in the component \service\migrate\MigrateForm.java of JEEWMS v3.7 allows attackers to execute arbitrary code via a crafted Zip file...

5.5CVSS0.00179EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/04/15 12:0 a.m.6 views

CVE-2025-29213

A zip slip vulnerability in the component \service\migrate\MigrateForm.java of JEEWMS v3.7 allows attackers to execute arbitrary code via a crafted Zip file...

5.9AI score0.00179EPSS
Exploits1References1
CVE
CVEadded 2025/04/15 12:0 a.m.53 views

CVE-2025-29213

CVE-2025-29213 affects JeeWMS v3.7 in the service migrate module, specifically the MigrateForm.java component. The vulnerability is a zip-slip flaw that can lead to arbitrary code execution when processing crafted ZIP files. Documents consistently name the vulnerable path as \service\migrate\Migr...

5.5CVSS7.4AI score0.00179EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2025/04/15 12:0 a.m.2 views

PT-2025-16383 · Jeewms · Jeewms

Name of the Vulnerable Software and Affected Versions: JEEWMS version 3.7 Description: A zip slip vulnerability in the MigrateForm.java component of the service migrate module allows attackers to execute arbitrary code via a crafted Zip file. This issue can potentially be exploited to gain...

5.5CVSS7.4AI score0.00179EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/01/14 12:0 a.m.3 views

PT-2025-3553 · Jeewms · Jeewms

Name of the Vulnerable Software and Affected Versions: JeeWMS versions prior to 2025.01.01 Description: The issue is related to a permission bypass in the component /interceptors/AuthInterceptor.cava. This component is part of the JeeWMS system, and the bypass could potentially allow unauthorized...

7.5CVSS6.8AI score0.00152EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/12/08 12:0 a.m.4 views

PT-2024-17556 · Guangzhou Huayi Intelligent Technology · Jeewms

Name of the Vulnerable Software and Affected Versions: Guangzhou Huayi Intelligent Technology Jeewms version 1.0.0 Description: A critical issue affects the Druid Monitoring Interface component, specifically the file /jeewms war/webpage/system/druid/index.html, leading to improper authorization...

6.9CVSS5.6AI score0.00357EPSS
Exploits0References9
OSV
OSVadded 2024/03/05 11:15 p.m.1 views

CVE-2024-27765

Directory Traversal vulnerability in Jeewms v.3.7 and before allows a remote attacker to obtain sensitive information via the cgformTemplateController component...

7.5CVSS5.8AI score0.00307EPSS
Exploits1References1
Rows per page
Query Builder