| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3028 | erzhongxmu JEEWMS JeecgListDemoController.java doAdd cross site scripting | erzhongxmu | JEEWMS | Medium | 4.3 | 2026-02-23 21:32:08 | Deep Dive |
| CVE-2026-3027 | erzhongxmu JEEWMS UEditor getContent.jsp cross site scripting | erzhongxmu | JEEWMS | Medium | 4.3 | 2026-02-23 21:02:08 | Deep Dive |
| CVE-2026-3026 | erzhongxmu JEEWMS UEditor getRemoteImage.jsp server-side request forgery | erzhongxmu | JEEWMS | High | 7.3 | 2026-02-23 20:02:10 | Deep Dive |
| CVE-2025-5390 | JeeWMS File filedeal.do filedeal access control | - | JeeWMS | Medium | 6.3 | 2025-05-31 19:00:08 | Deep Dive |
| CVE-2025-5389 | JeeWMS File generateController.do dogenerateOne2Many access control | - | JeeWMS | Medium | 6.3 | 2025-05-31 18:31:07 | Deep Dive |
| CVE-2025-5388 | JeeWMS generateController.do dogenerate sql injection | - | JeeWMS | Medium | 6.3 | 2025-05-31 18:00:09 | Deep Dive |
| CVE-2025-5387 | JeeWMS File generateController.do dogenerate access control | - | JeeWMS | Medium | 6.3 | 2025-05-31 17:31:07 | Deep Dive |
| CVE-2025-5386 | JeeWMS cgformTransController.do transEditor sql injection | - | JeeWMS | Medium | 6.3 | 2025-05-31 17:00:08 | Deep Dive |
| CVE-2025-5385 | JeeWMS cgformTemplateController.do doAdd path traversal | - | JeeWMS | Medium | 6.3 | 2025-05-31 16:31:07 | Deep Dive |
| CVE-2025-5384 | JeeWMS cgAutoListController.do CgAutoListController sql injection | - | JeeWMS | Medium | 6.3 | 2025-05-31 16:00:10 | Deep Dive |
| CVE-2025-0392 | Guangzhou Huayi Intelligent Technology Jeewms graphReportController.do datagridGraph sql injection | Guangzhou Huayi Intelligent Technology | Jeewms | Medium | 6.3 | 2025-01-11 11:00:20 | Deep Dive |
| CVE-2025-0391 | Guangzhou Huayi Intelligent Technology Jeewms CgFormBuildController. java saveOrUpdate sql injection | Guangzhou Huayi Intelligent Technology | Jeewms | Medium | 6.3 | 2025-01-11 09:00:14 | Deep Dive |
| CVE-2025-0390 | Guangzhou Huayi Intelligent Technology Jeewms wmOmNoticeHController.do path traversal | Guangzhou Huayi Intelligent Technology | Jeewms | Medium | 5.3 | 2025-01-11 07:31:09 | Deep Dive |
| CVE-2024-12347 | Guangzhou Huayi Intelligent Technology Jeewms Druid Monitoring Interface index.html improper authorization | Guangzhou Huayi Intelligent Technology | Jeewms | Medium | 5.3 | 2024-12-08 23:31:07 | Deep Dive |
| CVE-2024-11961 | Guangzhou Huayi Intelligent Technology Jeewms WmOmNoticeHController.java preHandle information disclosure | Guangzhou Huayi Intelligent Technology | Jeewms | Medium | 5.3 | 2024-11-28 15:00:09 | Deep Dive |
| CVE-2024-11251 | erzhongxmu Jeewms AuthInterceptor cgReportController.do sql injection | erzhongxmu | Jeewms | Medium | 6.3 | 2024-11-15 18:00:13 | Deep Dive |