Known Vulnerabilities for products from Jeesite
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Jeesite".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-38991 json | An issue in the delete function in the ActModelController class of jeesite v1.2.6 allows authenticated attackers to arbitrari... | 5.4 - MEDIUM | 2023-08-04 | 2023-08-08 |
| CVE-2023-38990 json | An issue in the delete function in the MenuController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily d... | 4.3 - MEDIUM | 2023-08-02 | 2023-08-05 |
| CVE-2023-38989 json | An issue in the delete function in the UserController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily d... | 4.3 - MEDIUM | 2023-07-31 | 2023-08-04 |
| CVE-2023-38988 json | An issue in the delete function in the OaNotifyController class of jeesite v1.2.6 allows authenticated attackers to arbitrari... | 4.3 - MEDIUM | 2023-07-28 | 2023-08-03 |
| CVE-2023-34601 json | Jeesite before commit 10742d3 was discovered to contain a SQL injection vulnerability via the component ${businessTable} at /... | 9.8 - CRITICAL | 2023-06-22 | 2023-06-30 |
| CVE-2020-19229 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-04-05 | 2022-04-13 |
| CVE-2019-1010202 json | Jeesite 1.2.7 is affected by: XML External Entity (XXE). The impact is: sensitive information disclosure. The component is: c... | 6.5 - MEDIUM | 2019-07-23 | 2019-08-05 |
| CVE-2019-1010201 json | Jeesite 1.2.7 is affected by: SQL Injection. The impact is: sensitive information disclosure. The component is: updateProcIns... | 6.5 - MEDIUM | 2019-07-23 | 2019-07-24 |
Known software with vulnerabilities from Jeesite
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jeesite | Jeesite | 1.0.0 |