CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

EUVD•added 2026/06/07 8:0 a.m.•16 views

EUVD-2026-34988

A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Actuator Endpoint. Executing a manipulation can lead to information disclosure. The attack can be...

6.9CVSS5.5AI score0.00286EPSS

Exploits0References5

CNNVD•added 2026/06/07 12:0 a.m.•4 views

JeeWMS 安全漏洞

JeeWMS is a JAVA-based warehouse management system developed by JeeWMS Corporation in China. There is a security vulnerability in JeeWMS. This vulnerability stems from incorrect operations with parameters such as dbType/dbDriver/dbUrl/dbUsername/dbPassword in the JimuReport test-connection Endpoi...

7.5CVSS7.3AI score0.00322EPSS

Exploits0References5

CNNVD•added 2026/05/13 12:0 a.m.•5 views

qihang-wms 安全漏洞

Qihang-WMS is an intelligent warehousing management system developed by Qiliping’s individual developers. The Qihang-WMS version commit 75c15a contains a security vulnerability. This vulnerability stems from an arbitrary file upload vulnerability present in the ShopOrderImportController.java...

7.3CVSS6.2AI score0.00284EPSS

Exploits0References2

NVD•added 2026/03/12 1:15 a.m.•6 views

CVE-2026-3969

A vulnerability was detected in FeMiner wms up to 1.0. This impacts an unknown function of the file /wms-master/src/basic/depart/departaddbg.php of the component Basic Organizational Structure Module. Performing a manipulation of the argument Name results in sql injection. The attack may be...

7.5CVSS0.00254EPSS

Exploits0References4

Cvelist•added 2026/03/12 12:32 a.m.•33 views

CVE-2026-3969 FeMiner wms Basic Organizational Structure depart_add_bg.php sql injection

7.5CVSS0.00254EPSS

Exploits0References4

CNNVD•added 2026/02/07 12:0 a.m.•4 views

warehouse 访问控制错误漏洞

Warehouse is a small-scale warehouse logistics management system developed by Yeqifu, based on Spring Boot. There is an access control vulnerability in Warehouse, which stems from improper access control in the role permission binding processing program...

8.8CVSS6.6AI score0.00309EPSS

Exploits1References7

RedhatCVE•added 2026/01/18 7:21 p.m.•6 views

CVE-2026-1059

A security vulnerability has been detected in FeMiner wms up to 9cad1f1b179a98b9547fd003c23b07c7594775fa. Affected by this vulnerability is an unknown functionality of the file /src/chkuser.php. The manipulation of the argument Username leads to sql injection. The attack is possible to be carried...

9.8CVSS6.8AI score0.00407EPSS

Exploits1References1

OSV•added 2026/01/17 7:15 p.m.•2 views

CVE-2026-1059

9.8CVSS5.6AI score

Exploits0References4

Positive Technologies•added 2026/01/17 12:0 a.m.•2 views

PT-2026-3367

Name of the Vulnerable Software and Affected Versions FeMiner wms versions prior to 9cad1f1b179a98b9547fd003c23b07c7594775fa Description A security issue exists in FeMiner wms. The manipulation of the Username argument in the file /src/chkuser.php can lead to SQL injection. This attack can be...

9.8CVSS7.1AI score0.00407EPSS

Exploits1References10

RedhatCVE•added 2025/12/09 12:11 a.m.•2 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

7.5CVSS6.7AI score0.00586EPSS

Exploits1References1

EUVD•added 2025/12/05 6:31 p.m.•2 views

EUVD-2025-201452

7.5CVSS6.2AI score0.00586EPSS

Exploits1References2

OSV•added 2025/12/05 5:16 p.m.•3 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

8.1CVSS6AI score

Exploits0References1

NVD•added 2025/12/05 5:16 p.m.•6 views

CVE-2025-65879

8.1CVSS0.00667EPSS

Exploits1References1

NVD•added 2025/12/05 5:16 p.m.•4 views

CVE-2025-65878

7.5CVSS0.00586EPSS

Exploits1References1

Cvelist•added 2025/12/05 12:0 a.m.•20 views

CVE-2025-65879

0.00667EPSS

Exploits1References1

Cvelist•added 2025/12/05 12:0 a.m.•20 views

CVE-2025-65878

0.00586EPSS

Exploits1References1

Positive Technologies•added 2025/12/05 12:0 a.m.•2 views

PT-2025-49264

Name of the Vulnerable Software and Affected Versions warehouse management system version 1.2 Description The software has an arbitrary file read issue. The /file/showImageByPath API endpoint does not properly sanitize user-supplied path parameters, potentially allowing an attacker to use directo...

7.5CVSS6.5AI score0.00586EPSS

Exploits1References6

Vulnrichment•added 2025/12/05 12:0 a.m.•1 views

CVE-2025-65878

6.4AI score0.00586EPSS

Exploits1References1

Vulnrichment•added 2025/12/05 12:0 a.m.•1 views

CVE-2025-65879

6.6AI score0.00667EPSS

Exploits1References1

CNNVD•added 2025/12/05 12:0 a.m.•1 views

Warehouse Management System 安全漏洞

Warehouse Management System is a warehouse management system by Carlo Montero Personal Developer. A security vulnerability exists in Warehouse Management System version 1.2, which stems from an uncleared user-controlled path parameter that could lead to arbitrary file reads...

7.5CVSS6.8AI score0.00586EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by