| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1588 | jishenghua jshERP installByPath install path traversal | jishenghua | jshERP | Low | 2.7 | 2026-01-29 13:32:06 | Deep Dive |
| CVE-2026-1549 | jishenghua jshERP PluginController uploadPluginConfigFile path traversal | jishenghua | jshERP | Medium | 4.3 | 2026-01-28 23:02:07 | Deep Dive |
| CVE-2026-1546 | jishenghua jshERP com.jsh.erp.datasource.mappers.DepotItemMapperEx importItemExcel getBillItemByParam sql injection | jishenghua | jshERP | Medium | 6.3 | 2026-01-28 22:02:06 | Deep Dive |
| CVE-2025-8840 | jshERP Endpoint deleteBatch improper authorization | - | jshERP | Medium | 5.4 | 2025-08-11 09:32:06 | Deep Dive |
| CVE-2025-8839 | jshERP Endpoint addUser improper authorization | - | jshERP | Medium | 6.3 | 2025-08-11 09:02:09 | Deep Dive |
| CVE-2025-7948 | jshERP updatePwd password recovery | - | jshERP | Medium | 4.3 | 2025-07-22 01:04:32 | Deep Dive |
| CVE-2025-7947 | jshERP Account delete improper authorization | - | jshERP | Medium | 5.4 | 2025-07-22 00:32:05 | Deep Dive |
| CVE-2025-7566 | jshERP SystemConfigController.java exportExcelByParam path traversal | - | jshERP | Medium | 4.7 | 2025-07-14 03:02:05 | Deep Dive |