CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

May 31, 2025

CVE ID : CVE-2025-5385

Published : May 31, 2025, 5:15 p.m. | 29 minutes ago

Description : A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5386 – JeeWMS SQL Injection Vulnerability

Next Article CVE-2025-5384 – JeeWMS SQL Injection Vulnerability

Highlights

CVE-2025-4747 – NetDragon Firewall Command Injection Vulnerability

May 16, 2025

CVE ID : CVE-2025-4747

Published : May 16, 2025, 5:15 a.m. | 3 hours, 44 minutes ago

Description : A vulnerability was found in Bohua NetDragon Firewall 1.0 and classified as critical. This issue affects some unknown processing of the file /systemstatus/ip_status.php. The manipulation of the argument subnet leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

Linux-lek geeft aanvaller roottoegang: “organisaties moeten meteen patchen”

Why Data Validation Testing Is Essential for ETL Success

The Persistence Problem: Why Exposed Credentials Remain Unfixed—and How to Change That

CVE-2025-43923 – Unicom Focal Point SQL Injection Vulnerability

CVE-2025-4747 – NetDragon Firewall Command Injection Vulnerability

CVE-2025-1731 and CVE-2025-1732 impacts Zyxel Firewalls

Mechanisms of Projective Composition of Diffusion Models

Windows 11 will finally stop nagging you to set Edge as your default browser — but only in some markets

CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

Related Posts