Browse all 9 CVE security advisories affecting Kados. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kados is a web application framework primarily used for building RESTful APIs and web services. Historically, it has been associated with vulnerabilities including remote code execution, cross-site scripting (XSS), and privilege escalation, often stemming from improper input validation and insecure default configurations. The framework's modular architecture has introduced security risks through third-party extensions with insufficient vetting. While no major public security incidents have been widely documented, its 9 CVEs highlight consistent security challenges, particularly in access control and data handling. Developers implementing Kados should prioritize hardening configurations and applying patches promptly to mitigate these recurring issues.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25688 | Kados R10 GreenBee SQL Injection via menu_lev1 Parameter — Kados GreenBeeCWE-89 | 8.2 | High | 2026-04-05 |
This page lists every published CVE security advisory associated with Kados. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.