Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:49 a.m.11 views

CVE-2022-27055

ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes thi...

7.5CVSS6.7AI score0.01615EPSS
Exploits1References1
NVD
NVD
added 2022/04/19 5:15 p.m.23 views

CVE-2022-27055

ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes thi...

7.5CVSS0.01615EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/04/19 5:15 p.m.10 views

CVE-2022-27055

ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes thi...

7.5CVSS5.8AI score0.01615EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/04/19 4:47 p.m.31 views

CVE-2022-27055

ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes thi...

7.6AI score0.01615EPSS
Exploits1References3
CVE
CVE
added 2022/04/19 4:47 p.m.76 views

CVE-2022-27055

CVE-2022-27055 affects ecjia-daojia 1.38.1-20210202629. The issue is information leakage through content/apps/installer/classes/Helper.php: on installation, a new environment file is created that records database credentials (including the DB password). The vendor disputes that risk, noting the e...

7.5CVSS7.4AI score0.01615EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/04/19 12:0 a.m.6 views

ecjia-daojia 安全漏洞

ecjia-daojia is a mobile e-commerce system for O2O business. A security vulnerability exists in ecjia-daojia, which originates from the installation of a web program that creates a new environment file and logs database information, including the database log password...

7.5CVSS7.3AI score0.01615EPSS
Exploits1References3
Rows per page
Query Builder