Browse all 9 CVE security advisories affecting RainyGao. AI-powered Chinese analysis, POCs, and references for each vulnerability.
RainyGao is a security researcher focused on identifying vulnerabilities in web applications and enterprise software, with 9 CVEs primarily related to remote code execution and cross-site scripting flaws. Their work often centers on privilege escalation weaknesses in authentication systems and API endpoints. Notable characteristics include consistent documentation of proof-of-concept exploits and detailed technical write-ups. While no major public incidents are directly attributed to this researcher, their CVE contributions span multiple vendors, including several critical findings in widely used enterprise platforms. The researcher maintains a methodical approach to vulnerability disclosure, emphasizing clear technical communication with affected organizations.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-15494 | RainyGao DocSys UserMapper.xml sql injection — DocSysCWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-15493 | RainyGao DocSys ReposAuthMapper.xml sql injection — DocSysCWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-15492 | RainyGao DocSys GroupMemberMapper.xml sql injection — DocSysCWE-89 | 6.3 | Medium | 2026-01-09 |
| CVE-2025-11631 | RainyGao DocSys deleteDoc.do path traversal — DocSysCWE-22 | 5.4 | Medium | 2025-10-12 |
| CVE-2025-11630 | RainyGao DocSys File Upload uploadDoc.do updateRealDoc path traversal — DocSysCWE-22 | 6.3 | Medium | 2025-10-12 |
| CVE-2025-11629 | RainyGao DocSys getUserList.do getUserList sql injection — DocSysCWE-89 | 6.3 | Medium | 2025-10-12 |
| CVE-2022-4511 | RainyGao DocSys path traversal — DocSysCWE-22 | 5.3 | Medium | 2022-12-15 |
| CVE-2022-4416 | RainyGao DocSys getReposAllUsers.do getReposAllUsers sql injection — DocSysCWE-707 | 6.3 | Medium | 2022-12-12 |
| CVE-2022-4402 | RainyGao DocSys ZIP File Decompression path traversal — DocSysCWE-22 | 4.7 | Medium | 2022-12-11 |
This page lists every published CVE security advisory associated with RainyGao. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.