Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

UJCMS — Vulnerabilities & Security Advisories 6

All 6 CVE vulnerabilities found in UJCMS, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-2954 Dromara UJCMS ImportDataController import-channel importChanel injection CWE-74 6.3 Medium2026-02-22
CVE-2026-2953 Dromara UJCMS Template WebFileTemplateController.delete deleteDirectory path traversal CWE-22 5.4 Medium2026-02-22
CVE-2025-2491 Dromara ujcms Edit Template File Page WebFileTemplateController.java update cross site scripting CWE-79 2.4 Low2025-03-18
CVE-2025-2490 Dromara ujcms File Upload WebFileUploadController.java upload cross site scripting CWE-79 2.4 Low2025-03-18
CVE-2024-12483 Dromara UJCMS User ID id authorization CWE-639 3.7 Low2024-12-11
CVE-2023-3231 UJCMS ZIP Package information disclosure CWE-200 3.1 Low2023-06-14

All 6 known CVE vulnerabilities affecting UJCMS with full Chinese analysis, references, and POCs where available.