Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Changing — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting Changing. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CHANGING is a widely used software platform primarily serving enterprise content management and workflow automation needs. Historically, it has been susceptible to multiple remote code execution, cross-site scripting, and privilege escalation vulnerabilities, accounting for its 14 recorded CVEs. The platform's complex architecture and extensive plugin ecosystem have contributed to persistent security challenges, with several critical flaws enabling unauthorized system access and data exfiltration. While no major public security incidents have been documented, the consistent pattern of vulnerabilities across multiple versions indicates ongoing security concerns that require diligent patch management and access controls for organizations relying on this platform.

Top products by Changing: ServiSign Windows versions Syuan-Gu-Da-Shih Mobile One Time Password Clinic Image System IDExpert Windows Logon Agent MOTP(Mobile One Time Password) TSA
CVE IDTitleCVSSSeverityPublished
CVE-2026-3000 Changing|IDExpert Windows Logon Agent - Remote Code Execution — IDExpert Windows Logon AgentCWE-494 9.8 Critical2026-03-02
CVE-2026-2999 Changing|IDExpert Windows Logon Agent - Remote Code Execution — IDExpert Windows Logon AgentCWE-494 9.8 Critical2026-03-02
CVE-2025-8858 Changing|Clinic Image System - SQL Injection — Clinic Image SystemCWE-89 7.5 High2025-08-29
CVE-2025-8857 Changing|Clinic Image System - Use of Hard-coded Credentials — Clinic Image SystemCWE-798 9.8 Critical2025-08-29
CVE-2025-8861 Changing|TSA - Missing Authentication — TSACWE-306 9.8 Critical2025-08-29
CVE-2024-3123 CHANGING Mobile One Time Password - Arbitrary File Upload — Mobile One Time PasswordCWE-434 7.2 High2024-07-01
CVE-2024-3122 CHANGING Mobile One Time Password - Arbitrary File Reading — Mobile One Time PasswordCWE-23 4.9 Medium2024-07-01
CVE-2021-44161 Changing Information Technology Inc. MOTP(Mobile One Time Password) - SQL Injection — MOTP(Mobile One Time Password)CWE-89 8.8 High2021-12-29
CVE-2020-3937 SysJust Syuan-Gu-Da-Shih-SQL injection — Syuan-Gu-Da-Shih 8.1 High2020-02-04
CVE-2020-3938 SysJust Syuan-Gu-Da-Shih -Request-Forgery — Syuan-Gu-Da-Shih 9.8 Critical2020-02-04
CVE-2020-3939 SysJust Syuan-Gu-Da-Shih -Cross-Site Scripting(XSS) — Syuan-Gu-Da-Shih 6.1 Medium2020-02-04
CVE-2020-3927 ServiSign Windows Versions- Arbitrary File Deletion — ServiSign Windows versions 8.3 High2020-02-03
CVE-2020-3925 ServiSign Windows Versions- Remote Code Execution via LoadLibrary — ServiSign Windows versions 8.3 High2020-02-03
CVE-2020-3926 ServiSign Windows Versions- Arbitrary File Access — ServiSign Windows versions 6.1 Medium2020-02-03

This page lists every published CVE security advisory associated with Changing. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.