CNNVD-202510-1432 Information

CNNVD ID

CNNVD-202510-1432

Related CVE

CVE-2025-60269

• CNNVD Published: 2025-10-10

Description (Chinese)

JeeWMS是中国华壹（JeeWMS）公司的一个基于 JAVA 的仓库管理系统。 JeeWMS 20250820版本存在安全漏洞，该漏洞源于exportXls函数未正确处理输入，可能导致SQL注入攻击。

Description (English)

JeeWMS is a warehouse management system based on JAVA. There is a security loophole in JeeWMS version 202500820, which stems from the incorrect handling of input in the ExportXls function, which may result in an injection attack by SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

华壹

Published

2025-10-10

Last Modified

2026-02-24

References

https://gitee.com/erzhongxmu/JEEWMS https://github.com/int-ux/report/issues/5