21 matches found
EUVD-2024-53727
Malicious code in bioql PyPI...
EUVD-2024-33707
Malicious code in bioql PyPI...
CVE-2024-27764
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
CVE-2024-11251
A vulnerability was found in erzhongxmu Jeewms up to 20241108. It has been rated as critical. This issue affects some unknown processing of the file cgReportController.do of the component AuthInterceptor. The manipulation of the argument begindate leads to sql injection. The attack may be initiat...
CVE-2024-57757
JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava...
CVE-2024-57757
JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava...
CVE-2024-57757
JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava...
JeeWMS 安全漏洞
JeeWMS is a JAVA-based warehouse management system from China Huayi JeeWMS. A security vulnerability exists in JeeWMS versions prior to v2025.01.01. An attacker exploiting this vulnerability can bypass privileges via component/authInterceptors/AuthInterceptor.cava...
CVE-2024-57757
JeeWMS (pre-2025.01.01) contains a permission bypass in the component /interceptors/AuthInterceptor.cava. The issue enables elevated access without user interaction and is reported with a CVSS 3.1 vector targeting high confidentiality impact (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Affected version...
CVE-2024-57757
JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava...
CVE-2024-11251
A vulnerability was found in erzhongxmu Jeewms up to 20241108. It has been rated as critical. This issue affects some unknown processing of the file cgReportController.do of the component AuthInterceptor. The manipulation of the argument begindate leads to sql injection. The attack may be initiat...
CVE-2024-11251 erzhongxmu Jeewms AuthInterceptor cgReportController.do sql injection
A vulnerability was found in erzhongxmu Jeewms up to 20241108. It has been rated as critical. This issue affects some unknown processing of the file cgReportController.do of the component AuthInterceptor. The manipulation of the argument begindate leads to sql injection. The attack may be initiat...
CVE-2024-11251 erzhongxmu Jeewms AuthInterceptor cgReportController.do sql injection
A vulnerability was found in erzhongxmu Jeewms up to 20241108. It has been rated as critical. This issue affects some unknown processing of the file cgReportController.do of the component AuthInterceptor. The manipulation of the argument begindate leads to sql injection. The attack may be initiat...
CVE-2024-11251
The CVE-2024-11251 entry concerns erzhongxmu Jeewms (up to 20241108). The issue is a SQL injection in the cgReportController.do file, affecting the AuthInterceptor component via manipulation of the begin_date argument. It is described as remotely initiable, with the exploit disclosed publicly; ve...
CVE-2024-27764
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
CVE-2024-27764
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
Design/Logic Flaw
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
CVE-2024-27764
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
CVE-2024-27764
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component...
JeeWMS Security Vulnerabilities
JeeWMS is JeeWMS open source a JAVA-based warehouse management system . JeeWMS v.3.7 and earlier versions of a security vulnerability , the vulnerability stems from allowing remote attackers to escalate privileges through the AuthInterceptor component...