VYPR

Jeesite

by Jeesite

Source repositories

CVEs (22)

  • CVE-2019-1010201Jul 23, 2019
    risk 0.00cvss epss 0.01

    Jeesite 1.2.7 is affected by: SQL Injection. The impact is: sensitive information disclosure. The component is: updateProcInsIdByBusinessId() function in src/main/java/com.thinkgem.jeesite/modules/act/ActDao.java has SQL Injection vulnerability. The attack vector is: network…

  • CVE-2019-1010202Jul 23, 2019
    risk 0.00cvss epss 0.01

    Jeesite 1.2.7 is affected by: XML External Entity (XXE). The impact is: sensitive information disclosure. The component is: convertToModel() function in src/main/java/com.thinkgem.jeesite/modules/act/service/ActProcessService.java. The attack vector is: network…

Page 2 of 2