All 5 CVE vulnerabilities found in e-cology, with AI-generated Chinese analysis, references, and POCs.
Vendor: Weaver
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-22679 | Weaver E-cology 10.0 Unauthenticated RCE via dubboApi Debug Endpoint CWE-306 | 9.8 | Critical | 2026-04-07 |
| CVE-2025-34038 | Weaver E-cology SQL Injection CWE-89 | 9.1AI | CriticalAI | 2025-06-24 |
| CVE-2024-7704 | Weaver e-cology Source Code ecology_dev.zip information disclosure CWE-200 | 5.3 | Medium | 2024-08-12 |
| CVE-2023-3793 | Weaver e-cology HTTP POST Request filelFileDownloadForOutDoc.class sql injection CWE-89 | 5.5 | Medium | 2023-07-20 |
| CVE-2023-2806 | Weaver e-cology API RequestInfoByXml xml external entity reference CWE-611 | 5.5 | Medium | 2023-05-19 |
All 5 known CVE vulnerabilities affecting e-cology with full Chinese analysis, references, and POCs where available.