Deer-wms-2@3.3 Security Vulnerabilities and Issues — Deer-wms-2@3.3 CVE List

Lucene search

DeerwmsDeer-wms-23.3

8 matches found

CVE•added 2025/07/25 2:15 a.m.•11 views

CVE-2025-8125

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/role/authUser/allocatedList. The manipulation of the argument params[dataScope] leads to sql injection. The attack may be launched remot...

9.8CVSS6.7AI score0.00029EPSS

Web

CVE•added 2025/07/25 3:15 a.m.•9 views

CVE-2025-8126

A vulnerability classified as critical has been found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/user/export. The manipulation of the argument params[dataScope] leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclo...

8.8CVSS6.7AI score0.00029EPSS

Web

CVE•added 2025/07/25 4:16 a.m.•9 views

CVE-2025-8127

A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. This vulnerability affects unknown code of the file /system/user/list. The manipulation of the argument params[dataScope] leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

8.8CVSS6.8AI score0.00029EPSS

Web

CVE•added 2025/07/25 12:15 a.m.•8 views

CVE-2025-8124

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /system/role/authUser/unallocatedList. The manipulation of the argument params[dataScope] leads to sql injection. The attack can be lau...

8.8CVSS6.7AI score0.00029EPSS

Web

CVE•added 2025/07/25 5:15 p.m.•8 views

CVE-2025-8162

A vulnerability, which was classified as critical, has been found in deerwms deer-wms-2 up to 3.3. Affected by this issue is some unknown functionality of the file /system/dept/list. The manipulation of the argument params[dataScope] leads to sql injection. The attack may be launched remotely. The ...

8.8CVSS6.7AI score0.00029EPSS

Web

CVE•added 2025/07/25 6:15 p.m.•8 views

CVE-2025-8163

A vulnerability, which was classified as critical, was found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/role/list. The manipulation of the argument params[dataScope] leads to sql injection. It is possible to initiate the attack remotely. The exploit has been d...

8.8CVSS6.7AI score0.00029EPSS

Web

CVE•added 2025/07/25 5:15 p.m.•7 views

CVE-2025-8161

A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. Affected by this vulnerability is an unknown functionality of the file /system/role/export. The manipulation of the argument params[dataScope] leads to sql injection. The attack can be launched remotely. The exploit h...

8.8CVSS6.8AI score0.00029EPSS

Web

CVE•added 2025/07/24 9:15 p.m.•6 views

CVE-2025-8123

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclos...

8.8CVSS6.8AI score0.00029EPSS

Web