24 matches found
CVE-2024-12479
The CVE-2024-12479 issue affects cjbi wetech-cms versions 1.0–1.2, specifically the searchTopicByKeyword function in wetech-cms-master/wetech-core/src/main/java/tech/wetech/cms/dao/TopicDao.java. The root cause is manipulation of the keyword argument leading to SQL injection, with remote initiati...
PT-2024-17613 · Unknown · Wetech-Cms
Name of the Vulnerable Software and Affected Versions: cjbi wetech-cms versions 1.0 through 1.2 Description: A critical issue has been found, affecting the searchTopic function in the TopicDao.java file. The manipulation of the con argument leads to SQL injection, allowing for remote attacks. The...
PT-2024-17612 · Unknown · Wetech-Cms
Name of the Vulnerable Software and Affected Versions: cjbi wetech-cms versions 1.0 through 1.2 Description: A critical issue affects the searchTopicByKeyword function of the file wetech-cms-masterwetech-coresrcmainjavatechwetechcmsdaoTopicDao.java. The manipulation of the keyword argument leads ...
PT-2024-17614 · Cjbi · Wetech-Cms
Name of the Vulnerable Software and Affected Versions: cjbi wetech-cms versions 1.0 through 1.2 Description: A critical issue has been found, affecting the findUser function in the UserDao.java file. The manipulation of the searchValue, gId, or rId arguments leads to SQL injection. This issue can...