4 matches found
ketr JEPaaS SQL注入漏洞
ketr JEPaaS is a low-code rapid development platform open-sourced by China's ketr ketr. A SQL injection vulnerability exists in ketr JEPaaS 7.2.8 and earlier versions, which stems from incorrect manipulation of the parameter keyWord in the file /je/postil/postil/readAllPostil, which could lead to...
PT-2025-49246
A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...
JEPaaS Access Control Error Vulnerability
JEPaaS is a low-code rapid development platform for building enterprise-class applications. A security vulnerability exists in JEPaaS 7.2.8, which stems from the doFilterInternal function of the Filter Handler component not properly enforcing access control. The vulnerability can be exploited by ...
SQL Injection Vulnerability in JEPaaS Platform of Beijing Kate Weiye Technology Co.
The JEPaaS platform is a low-code rapid development. Ltd. JEPaaS Platform suffers from a SQL injection vulnerability that can be exploited by attackers to obtain sensitive information from the database...