Browse all 4 CVE security advisories affecting cjbi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CJBI develops enterprise software for supply chain management and logistics operations. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, the four CVEs associated with CJBI highlight consistent issues with authentication mechanisms and insecure default configurations. Their security posture appears typical for enterprise software vendors, with vulnerabilities primarily affecting exposed web interfaces and API endpoints rather than core processing systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-12482 | cjbi wetech-cms Database Backup BackupFileUtil.java backup path traversal — wetech-cmsCWE-24 | 4.3 | Medium | 2024-12-11 |
| CVE-2024-12481 | cjbi wetech-cms UserDao.java findUser sql injection — wetech-cmsCWE-89 | 6.3 | Medium | 2024-12-11 |
| CVE-2024-12480 | cjbi wetech-cms TopicDao.java searchTopic sql injection — wetech-cmsCWE-89 | 6.3 | Medium | 2024-12-11 |
| CVE-2024-12479 | cjbi wetech-cms TopicDao.java searchTopicByKeyword sql injection — wetech-cmsCWE-89 | 6.3 | Medium | 2024-12-11 |
This page lists every published CVE security advisory associated with cjbi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.