exploitDog

CVE-2025-60269

Опубликовано: 10 окт. 2025

Источник: nvd

CVSS3: 9.4

EPSS Низкий

Описание

JEEWMS 20250820 is vulnerable to SQL Injection in the exportXls function located in the src/main/java/org/jeecgframework/web/cgreport/controller/excel/CgExportExcelController.java file.

Ссылки

https://gitee.com/erzhongxmu/JEEWMS
Product
https://github.com/int-ux/report/issues/5
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:huayi-tec:jeewms:2025-08-20:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00045

Низкий

9.4 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-c3cp-w77v-m53p

CVSS3: 9.4

github

4 месяца назад

JEEWMS 20250820 is vulnerable to SQL Injection in the exportXls function located in the src/main/java/org/jeecgframework/web/cgreport/controller/excel/CgExportExcelController.java file.

EPSS

Процентиль: 14%

0.00045

Низкий

9.4 Critical

CVSS3

Дефекты

CWE-89