Lucene search
K

87 matches found

EUVD
EUVD
added 2026/06/07 8:0 a.m.20 views

EUVD-2026-34988

A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Actuator Endpoint. Executing a manipulation can lead to information disclosure. The attack can be...

6.9CVSS5.5AI score0.00292EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/07 12:0 a.m.10 views

JeeWMS 安全漏洞

JeeWMS is a JAVA-based warehouse management system developed by JeeWMS Corporation in China. There is a security vulnerability in JeeWMS. This vulnerability stems from incorrect operations with parameters such as dbType/dbDriver/dbUrl/dbUsername/dbPassword in the JimuReport test-connection Endpoi...

7.5CVSS7.3AI score0.00329EPSS
Exploits0References5
NVD
NVD
added 2026/03/12 1:15 a.m.8 views

CVE-2026-3969

A vulnerability was detected in FeMiner wms up to 1.0. This impacts an unknown function of the file /wms-master/src/basic/depart/departaddbg.php of the component Basic Organizational Structure Module. Performing a manipulation of the argument Name results in sql injection. The attack may be...

7.5CVSS0.00254EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/12 12:32 a.m.36 views

CVE-2026-3969 FeMiner wms Basic Organizational Structure depart_add_bg.php sql injection

A vulnerability was detected in FeMiner wms up to 1.0. This impacts an unknown function of the file /wms-master/src/basic/depart/departaddbg.php of the component Basic Organizational Structure Module. Performing a manipulation of the argument Name results in sql injection. The attack may be...

7.5CVSS0.00254EPSS
Exploits0References4
NVD
NVD
added 2025/12/05 5:16 p.m.16 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

8.1CVSS0.00693EPSS
Exploits1References1
NVD
NVD
added 2025/12/05 5:16 p.m.6 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

7.5CVSS0.00608EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/05 12:0 a.m.4 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

6.6AI score0.00693EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/12/05 12:0 a.m.5 views

Warehouse Management System 安全漏洞

Warehouse Management System is a warehouse management system by Carlo Montero Personal Developer. A security vulnerability exists in Warehouse Management System version 1.2, which stems from an unvalidated goodsimg parameter that could cause an authenticated user to delete arbitrary files...

8.1CVSS6.7AI score0.00693EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/05 12:0 a.m.3 views

Warehouse Management System 安全漏洞

Warehouse Management System is a warehouse management system by Carlo Montero Personal Developer. A security vulnerability exists in Warehouse Management System version 1.2, which stems from an uncleared user-controlled path parameter that could lead to arbitrary file reads...

7.5CVSS6.8AI score0.00608EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/05 12:0 a.m.22 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

0.00608EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/05 12:0 a.m.2 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

6.4AI score0.00608EPSS
Exploits1References1
CVE
CVE
added 2025/12/05 12:0 a.m.17 views

CVE-2025-65878

CVE-2025-65878 affects Warehouse Management System v1.2. The vulnerability is an arbitrary file read via /file/showImageByPath where unsanitized user-supplied path parameters enable directory traversal to read arbitrary server files, risking leakage of sensitive information. Documented in multipl...

7.5CVSS6.4AI score0.00608EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2025/12/05 12:0 a.m.12 views

CVE-2025-65879

CVE-2025-65879 — Normal mode Warehouse Management System 1.2 is affected by an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server’s UPLOAD_PATH and passed to File.delete(...

8.1CVSS6.6AI score0.00693EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/10/10 12:0 a.m.5 views

JeeWMS 安全漏洞

JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS version 20250820, which stems from a missing file check in the file/saveFiles function and could lead to remote code execution...

6.5CVSS7.7AI score0.00336EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-37087

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0083EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32193

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00589EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32195

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00589EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-32191

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.0055EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-32192

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.0055EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.6 views

JeeWMS 安全漏洞

JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS version 3.7, which originates from SQL injection in the CgReportController API...

9.8CVSS7.8AI score0.00476EPSS
Exploits1References4
Rows per page
Query Builder