All 3 CVE vulnerabilities found in TMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: xiweicheng
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1062 | xiweicheng TMS HtmlUtil.java summary server-side request forgery CWE-918 | 6.3 | Medium | 2026-01-17 |
| CVE-2026-1061 | xiweicheng TMS FileController.java upload unrestricted upload CWE-434 | 6.3 | Medium | 2026-01-17 |
| CVE-2025-14801 | xiweicheng TMS create createComment cross site scripting CWE-79 | 2.4 | Low | 2025-12-17 |
All 3 known CVE vulnerabilities affecting TMS with full Chinese analysis, references, and POCs where available.