Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

appRain — Vulnerabilities & Security Advisories 33

Browse all 33 CVE security advisories affecting appRain. AI-powered Chinese analysis, POCs, and references for each vulnerability.

appRain is a low-code platform designed to accelerate enterprise application development through visual drag-and-drop interfaces and pre-built components. Despite its utility in streamlining digital transformation, the software has faced significant scrutiny regarding its security posture, evidenced by thirty-three recorded Common Vulnerabilities and Exposures. Historical analysis reveals a pattern of critical flaws, primarily involving remote code execution, cross-site scripting, and broken access control mechanisms that allow privilege escalation. These vulnerabilities often stem from insufficient input validation and weak authentication protocols within the platform’s core engine. While no single catastrophic public breach has been widely documented as a direct result of these specific CVEs, the high volume of disclosed issues suggests systemic weaknesses in the development lifecycle. Organizations utilizing appRain must prioritize rigorous patch management and strict configuration hardening to mitigate the risk of exploitation by malicious actors seeking unauthorized system access.

Top products by appRain: appRain CMF
CVE IDTitleCVSSSeverityPublished
CVE-2024-58279 appRain CMF 4.0.5 Authenticated Remote Code Execution via Filemanager Upload — appRain CMFCWE-434 7.2AIHighAI2025-12-10
CVE-2025-41063 Reflected Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41062 Reflected Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41061 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41060 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41059 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41058 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41057 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41056 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41055 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41054 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41053 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41052 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41051 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41050 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41049 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41048 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41047 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41046 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41045 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41044 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41043 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41042 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41041 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41040 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41039 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41038 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41037 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41036 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMFCWE-79 5.4 -2025-09-04
CVE-2025-41035 Path Traversal vulnerability in appRain CMF — appRain CMFCWE-22 6.5 -2025-09-04

This page lists every published CVE security advisory associated with appRain. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.