Browse all 9 CVE security advisories affecting Zhong Bang. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Zhong Bang develops enterprise resource planning (ERP) and supply chain management software primarily for manufacturing and logistics sectors. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and insecure default configurations. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities across multiple CVEs suggests systemic security weaknesses in their development practices. Their software typically requires network exposure, increasing potential attack surfaces for threat actors targeting business-critical systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1734 | Zhong Bang CRMEB crontab Endpoint CrontabController.php authorization — CRMEBCWE-862 | 5.3 | Medium | 2026-02-01 |
| CVE-2026-1733 | Zhong Bang CRMEB :uni tidyOrder improper authorization — CRMEBCWE-285 | 4.3 | Medium | 2026-02-01 |
| CVE-2023-3234 | Zhong Bang CRMEB PublicController.php put_image deserialization — CRMEBCWE-502 | 4.3 | Medium | 2023-06-14 |
| CVE-2023-3233 | Zhong Bang CRMEB PublicController.php get_image_base64 server-side request forgery — CRMEBCWE-918 | 6.3 | Medium | 2023-06-14 |
| CVE-2023-3232 | Zhong Bang CRMEB Image Upload app_auth deserialization — CRMEBCWE-502 | 6.3 | Medium | 2023-06-14 |
| CVE-2023-2419 | Zhong Bang CRMEB SystemAttachmentServices.php videoUpload unrestricted upload — CRMEBCWE-434 | 4.7 | Medium | 2023-04-29 |
This page lists every published CVE security advisory associated with Zhong Bang. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.