All 9 CVE vulnerabilities found in DocSys, with AI-generated Chinese analysis, references, and POCs.
Vendor: RainyGao
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-15494 | RainyGao DocSys UserMapper.xml sql injection CWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-15493 | RainyGao DocSys ReposAuthMapper.xml sql injection CWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-15492 | RainyGao DocSys GroupMemberMapper.xml sql injection CWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-11631 | RainyGao DocSys deleteDoc.do path traversal CWE-22 | 5.4 | Medium | 2025-10-12 |
| CVE-2025-11630 | RainyGao DocSys File Upload uploadDoc.do updateRealDoc path traversal CWE-22 | 6.3 | Medium | 2025-10-12 |
| CVE-2025-11629 | RainyGao DocSys getUserList.do getUserList sql injection CWE-89 | 6.3 | Medium | 2025-10-12 |
| CVE-2022-4511 | RainyGao DocSys path traversal CWE-22 | 5.3 | Medium | 2022-12-15 |
| CVE-2022-4416 | RainyGao DocSys getReposAllUsers.do getReposAllUsers sql injection CWE-707 | 6.3 | Medium | 2022-12-12 |
| CVE-2022-4402 | RainyGao DocSys ZIP File Decompression path traversal CWE-22 | 4.7 | Medium | 2022-12-11 |
All 9 known CVE vulnerabilities affecting DocSys with full Chinese analysis, references, and POCs where available.