All 5 CVE vulnerabilities found in SSCMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7435 | SSCMS v7.4.0 SQL Injection via stl:sqlContent queryString CWE-89 | 7.2 | High | 2026-04-30 |
| CVE-2026-7429 | SSCMS v7.4.0 Reflected Cross-Site Scripting via STL Processing CWE-79 | 4.6 | Medium | 2026-04-30 |
| CVE-2026-4542 | SSCMS layerImage Endpoint LayerImageController.Submit.cs path traversal CWE-22 | 5.4 | Medium | 2026-03-22 |
| CVE-2026-4234 | SSCMS DDL SitesAddController.Submit.cs sql injection CWE-89 | 6.3 | Medium | 2026-03-16 |
| CVE-2026-4222 | SSCMS download PathUtils.RemoveParentPath path traversal CWE-22 | 3.8 | Low | 2026-03-16 |
All 5 known CVE vulnerabilities affecting SSCMS with full Chinese analysis, references, and POCs where available.