Filter
-Infinity
0

Trending

Last week
Last month
Last year

ujcmsDromara ujcms Edit Template File Page WebFileTemplateController.java update cross site scripting

medium
4.8
First published (updated )
CVE-2025-2491

ujcmsDromara ujcms File Upload WebFileUploadController.java upload cross site scripting

medium
4.8
First published (updated )
CVE-2025-2490

Dromara Open Capacity PlatformDromara open-capacity-platform auth-server heapdump information disclosure

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2024-3928

maven/cn.dev33:sa-token-coreAn issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privilege…

critical
9.8
First published (updated )
CVE-2023-44794

maven/cn.dev33:sa-token-coreAn issue in Dromara SaToken version 1.3.50RC and before when using Spring dynamic controllers, a spe…

high
8.8
First published (updated )
CVE-2023-43961

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dromara SurenessDromara Sureness before v1.0.8 was discovered to use a hardcoded key.

critical
9.8
First published (updated )
CVE-2023-31581

Dromara HuToolDromara HuTool XML Parsing Module XmlUtil.java readBySax xml external entity reference

high
7.5
First published (updated )
CVE-2023-3276

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203