Crmeb Java
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:crmeb_java:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Crmeb Java (c21349bd-5dd6-5d12-b58b-4db7eca6336e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-7673 |
vulnerable | 2026-06-08 08:08:57.552953 |
crmeb_java Admin Upload UploadServiceImpl.java unrestricted upload
MEDIUM (4.7)
A vulnerability was detected in crmeb_java up to 1.3.4. This vulnerability affects unknown code of the file crmeb/crmeb-service/src/main/java/com/zbkj/service/service/impl/UploadServiceImpl.java of the component Admin Upload. Performing a manipulation of the argument model results in unrestricted upload. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-03T01:15:37.395Z
Updated: 2026-05-04T14:54:04.987Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2365 |
vulnerable | 2026-06-08 07:16:56.881759 |
crmeb_java WeChatMessageController.java webHook xml external entity reference
MEDIUM (6.3)
A vulnerability, which was classified as problematic, has been found in crmeb_java up to 1.3.4. Affected by this issue is the function webHook of the file WeChatMessageController.java. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-03-17T06:31:04.154Z
Updated: 2025-03-17T14:41:38.830Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.