Lucene search
K

177 matches found

Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.6 views

PT-2024-26317 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function in SysTenantMapper.xml, which can be exploited. Recommendations: For version 2.7.0, consider disabling the findPage function in SysTenantMapper.xml...

9.8CVSS8AI score0.00421EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.9 views

PT-2024-26314 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function within ProcessDefinitionMapper.xml. Recommendations: For J2EEFAST version 2.7.0, consider restricting access to the findPage function in...

5.4CVSS8AI score0.00245EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.7 views

PT-2024-26313 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function within SysMsgPushMapper.xml. Recommendations: For J2EEFAST version 2.7.0, consider restricting access to the findPage function in SysMsgPushMapper.xm...

9.8CVSS8.3AI score0.00421EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/23 12:0 a.m.6 views

J2EEFAST 安全漏洞

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from SysMsgPushMapper.xml findPage...

9.8CVSS8.2AI score0.00421EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.6 views

PT-2024-26316 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was found in the findPage function within SysUreportFileMapper.xml. Recommendations: For J2EEFAST version 2.7.0, consider restricting access to the findPage function in...

8.2CVSS8AI score0.00321EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.4 views

PT-2024-26311 · J2Eefast · J2Eefast

Name of the Vulnerable Software and Affected Versions: J2EEFAST version 2.7.0 Description: A SQL injection issue was discovered via the findPage function in SysOperLogMapper.xml. This allows for potential exploitation. No information is provided about the estimated number of affected devices or...

6.3CVSS8.1AI score0.00254EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/23 12:0 a.m.5 views

J2EEFAST 安全漏洞

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the BpmTaskFromMapper.xml findPage...

9.8CVSS8.2AI score0.00534EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/05/23 12:0 a.m.6 views

J2EEFAST 安全漏洞

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the SysUreportFileMapper.xml findPa...

8.2CVSS8.2AI score0.00321EPSS
Exploits0References4
CNVD
CNVD
added 2024/05/10 12:0 a.m.7 views

J2EEFAST list function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the list function of the sqlfilter...

7.3CVSS8AI score0.0037EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.10 views

J2EEFAST authUserList Function SQL Injection Vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version exists SQL injection vulnerability , the vulnerability stems from the authUserList function in the...

9.8CVSS8AI score0.00569EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.9 views

J2EEFAST getDeptList function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version exists SQL injection vulnerability , the vulnerability stems from the getDeptList function in the...

9.8CVSS8AI score0.00557EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.8 views

J2EEFAST findApplyedTasksPage function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2eeFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from BpmTaskMapper.xml...

8.8CVSS8.1AI score0.00536EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.12 views

J2EEFAST unallocatedList function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the unallocatedList function of the...

5.3CVSS8AI score0.00244EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.9 views

J2EEFAST commentList function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . A SQL injection vulnerability exists in J2EEFAST v2.7.0, which is caused by the lack of validation of the sqlfilter parameter...

9.8CVSS8AI score0.00557EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.9 views

J2EEFAST authRoleList function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version exists SQL injection vulnerability , the vulnerability stems from the authRoleList function in the...

8.8CVSS8AI score0.00547EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.8 views

J2EEFAST myProcessList function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the myProcessList function of the...

8.1CVSS8AI score0.00483EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.6 views

J2EEFAST export function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2eeFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the export function of the sqlfilte...

9.1CVSS8AI score0.0052EPSS
Exploits0References1
CNVD
CNVD
added 2024/05/10 12:0 a.m.7 views

J2EEFAST findpage function SQL injection vulnerability

J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2eeFAST v2.7.0 version of the SQL injection vulnerability , the vulnerability stems from the findpage function of the...

7.5CVSS8AI score0.00514EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 5:15 p.m.16 views

CVE-2024-33155

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the getDeptList function...

9.8CVSS7.8AI score0.00557EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 5:15 p.m.17 views

CVE-2024-33161

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the unallocatedList function...

5.3CVSS7.8AI score0.00244EPSS
Exploits0References1
Rows per page
Query Builder