Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-53729 | DataEase ExportCenter IDOR allows cross-user export task access | |
| CVE-2026-53730 | DataEase: Unauthorized Access to Engine Database via previewSql Endpoint | |
| CVE-2026-57172 | DataEase: Hardcoded JWT Signing Secret in ShareLink | |
| CVE-2026-50530 | DataEase: Token with Overly Broad Privileges in Share Mode: Access to Unshared Datasets | |
| CVE-2026-50529 | DataEase: Link Token Leakage Prior to Share Password/Ticket Validation | |
| CVE-2026-55631 | DataEase: Path Traversal Leading to Arbitrary File Deletion via Font Management | |
| CVE-2026-55635 | DataEase: Authenticated SQL Injection in Chart Quota Filters | |
| CVE-2026-55647 | DataEase: authenticated stored XSS in the dashboard text components | |
| CVE-2026-55633 | DataEase H2 RCE via Zip Protocol & File Dropper Fix bypass |
No comments yet