All 8 CVE vulnerabilities found in AJ-Report, with AI-generated Chinese analysis, references, and POCs.
Vendor: anji-plus
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-7314 | anji-plus AJ-Report Authentication Bypass CWE-288 | 9.8 | Critical | 2024-08-02 |
| CVE-2024-5356 | anji-plus AJ-Report testTransform;swagger-ui sql injection CWE-89 | 6.3 | Medium | 2024-05-26 |
| CVE-2024-5355 | anji-plus AJ-Report IGroovyHandler command injection CWE-77 | 6.3 | Medium | 2024-05-26 |
| CVE-2024-5354 | anji-plus AJ-Report detailByCode information disclosure CWE-200 | 4.3 | Medium | 2024-05-26 |
| CVE-2024-5353 | anji-plus AJ-Report ZIP File decompress path traversal CWE-22 | 6.3 | Medium | 2024-05-26 |
| CVE-2024-5352 | anji-plus AJ-Report validationRules deserialization CWE-502 | 6.3 | Medium | 2024-05-26 |
| CVE-2024-5351 | anji-plus AJ-Report Javascript getValueFromJs deserialization CWE-502 | 6.3 | Medium | 2024-05-26 |
| CVE-2024-5350 | anji-plus AJ-Report pageList sql injection CWE-89 | 6.3 | Medium | 2024-05-25 |
All 8 known CVE vulnerabilities affecting AJ-Report with full Chinese analysis, references, and POCs where available.