CVE-2026-1062

CVE-2026-1062 affects xiweicheng TMS up to version 2.28.0. The flaw is in the function Summary (src/main/java/com/lhjz/portal/util/HtmlUtil.java) where manipulation of the URL argument enables server-side request forgery. Attacks can be initiated remotely, and an exploit has been published. Multi...

CVE-2026-1062 xiweicheng TMS HtmlUtil.java summary server-side request forgery

A flaw has been found in xiweicheng TMS up to 2.28.0. This affects the function Summary of the file src/main/java/com/lhjz/portal/util/HtmlUtil.java. This manipulation of the argument url causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been...

PT-2026-3369

Name of the Vulnerable Software and Affected Versions xiweicheng TMS versions up to 2.28.0 Description A flaw exists in xiweicheng TMS that allows for server-side request forgery. The issue is related to the Summary function within the src/main/java/com/lhjz/portal/util/HtmlUtil.java file...

TMS code-related vulnerabilities

TMS is a channel-based team communication and collaboration tool developed by Weicheng’s individual developers, along with a lightweight task board. Versions of TMS 2.28.0 and earlier contained code vulnerabilities. These vulnerabilities stemmed from incorrect handling of the parameter url in the...