Browse all 3 CVE security advisories affecting ALLE INFORMATION CO., LTD.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ALLE INFORMATION CO., LTD. develops enterprise software solutions with a focus on document management and workflow automation systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, the three CVEs associated with the company highlight recurring issues in their web application components, particularly in file upload mechanisms and session management. Their security posture appears to involve reactive patching rather than proactive security-by-design approaches, leaving customers potentially exposed to exploitation between vulnerability disclosures and updates.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-10506 | ALLE INFORMATION CO., LTD. School Manage System - Path Traversal — School Manage System | 7.5 | High | 2020-04-15 |
| CVE-2020-10507 | ALLE INFORMATION CO., LTD. School Manage System - Security Misconfiguration — School Manage System | 9.8 | Critical | 2020-04-15 |
| CVE-2020-10505 | ALLE INFORMATION CO., LTD. School Manage System - SQL Injection — School Manage SystemCWE-89 | 9.8 | Critical | 2020-04-15 |
This page lists every published CVE security advisory associated with ALLE INFORMATION CO., LTD.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.