CVE Tools

j2eefast

OSS Librariesoss-project

17

Cumulative CVEs

1

Monthly snapshots

#71

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting j2eefast.

CVE-2024-45944In J2eeFAST <=2.7, the backend function has unsafe filtering, which allows an attacker to trigger certain sensitive functions resulting in arbitrary code execution.9.8Oct 18, 2024
CVE-2024-35091J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysTenantMapper.xml.9.8May 23, 2024
CVE-2024-35086J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in BpmTaskFromMapper.xml .9.8May 23, 2024
CVE-2024-35082J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysOperLogMapper.xml.6.3May 23, 2024
CVE-2024-35084J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysMsgPushMapper.xml.9.8May 23, 2024
CVE-2024-35085J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in ProcessDefinitionMapper.xml.5.4May 23, 2024
CVE-2024-35090J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysUreportFileMapper.xml.8.2May 23, 2024
CVE-2024-35083J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the findPage function in SysLoginInfoMapper.xml.8.8May 23, 2024
CVE-2024-33164J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the authUserList() function.9.8May 7, 2024
CVE-2024-33161J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the unallocatedList() function.5.3May 7, 2024
CVE-2024-33155J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the getDeptList() function.9.8May 7, 2024
CVE-2024-33153J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the commentList() function.9.8May 7, 2024
CVE-2024-33149J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the myProcessList function.8.1May 7, 2024
CVE-2024-33148J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the list function.7.3May 7, 2024
CVE-2024-33147J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the authRoleList function.8.8May 7, 2024