Lucene search
K

32 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-30909

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00569EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-35190

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00534EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-35187

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00405EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:59 a.m.8 views

CVE-2024-33148

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the list function...

7.3CVSS8.3AI score0.0037EPSS
Exploits0References1
NVD
NVD
added 2024/05/23 5:15 p.m.20 views

CVE-2024-35090

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysUreportFileMapper.xml...

8.2CVSS7.8AI score0.00321EPSS
Exploits0References2
NVD
NVD
added 2024/05/23 5:15 p.m.17 views

CVE-2024-35086

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in BpmTaskFromMapper.xml...

9.8CVSS7.8AI score0.00534EPSS
Exploits1References2
NVD
NVD
added 2024/05/23 5:15 p.m.69 views

CVE-2024-35082

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysOperLogMapper.xml...

6.3CVSS7.8AI score0.00254EPSS
Exploits0References2
NVD
NVD
added 2024/05/23 5:15 p.m.18 views

CVE-2024-35085

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in ProcessDefinitionMapper.xml...

5.4CVSS7.8AI score0.00245EPSS
Exploits0References2
CVE
CVE
added 2024/05/23 5:4 p.m.535 views

CVE-2024-35091

CVE-2024-35091 affects J2EEFAST v2.7.0 via SysTenantMapper.xml findPage, where missing input-validation enables SQL injection. Root cause: lack of external-input SQL validation in the findPage function. Impact: potential exposure of sensitive database data; CVSS v3.1 base score 9.8 (NETWORK, HIGH...

9.8CVSS8.2AI score0.00421EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/23 5:4 p.m.15 views

CVE-2024-35091

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysTenantMapper.xml...

9.8AI score0.00421EPSS
Exploits0References2
CVE
CVE
added 2024/05/23 4:57 p.m.88 views

CVE-2024-35084

CVE-2024-35084 affects J2EEFAST v2.7.0. The vulnerability is a SQL injection in SysMsgPushMapper.xml’s findPage function caused by lack of validation for external input SQL statements. Reported impact indicates high confidentiality, integrity, and availability risk (base score 9.8, CVSS3.1: AV:N/...

9.8CVSS8.2AI score0.00421EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/23 4:57 p.m.12 views

CVE-2024-35084

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysMsgPushMapper.xml...

8.3AI score0.00421EPSS
Exploits0References2
CVE
CVE
added 2024/05/23 4:52 p.m.373 views

CVE-2024-35090

Affected software: J2EEFAST v2.7.0. Vulnerability: SQL injection via the SysUreportFileMapper.xml findPage function. Root cause: lack of validation of external input SQL statements. Impact (as stated): Attacker could execute arbitrary SQL to steal sensitive database data. References in docs: Mult...

8.2CVSS8.2AI score0.00321EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/07 5:15 p.m.13 views

CVE-2024-33148

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the list function...

7.3CVSS7.8AI score0.0037EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 5:15 p.m.14 views

CVE-2024-33147

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authRoleList function...

8.8CVSS7.8AI score0.00547EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 5:15 p.m.14 views

CVE-2024-33149

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the myProcessList function...

8.1CVSS7.8AI score0.00483EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 4:15 p.m.13 views

CVE-2024-33139

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the findpage function...

7.5CVSS7.8AI score0.00514EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 4:15 p.m.42 views

CVE-2024-33144

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the findApplyedTasksPage function in BpmTaskMapper.xml...

8.8CVSS7.8AI score0.00536EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/07 12:0 a.m.17 views

CVE-2024-33144

J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the findApplyedTasksPage function in BpmTaskMapper.xml...

8.1AI score0.00536EPSS
Exploits0References1
CVE
CVE
added 2024/05/07 12:0 a.m.67 views

CVE-2024-33155

Summary: CVE-2024-33155 affects J2EEFAST v2.7.0, with a SQL injection in the getDeptList() function via the sql_filter parameter. The vulnerability is documented as high-severity (CVSSv3.1: 9.8, CRITICAL) with full impact on confidentiality, integrity, and availability. What’s affected: J2EEFAST ...

9.8CVSS8.2AI score0.00557EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder