Browse all 4 CVE security advisories affecting dazhouda. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Dazhouda operates primarily in the software development space, with its products commonly used in enterprise environments for data processing and workflow automation. Historically, vulnerabilities associated with this entity frequently include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the presence of four CVEs indicates ongoing security challenges that require diligent patch management and secure coding practices to mitigate potential exploitation risks in deployed systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-3997 | dazhouda lecms Personal Information Page index.php cross-site request forgery — lecmsCWE-352 | 4.3 | Medium | 2025-04-28 |
| CVE-2025-3979 | dazhouda lecms Password Change index.php cross-site request forgery — lecmsCWE-352 | 4.3 | Medium | 2025-04-27 |
| CVE-2025-3978 | dazhouda lecms user_set.htm information disclosure — lecmsCWE-200 | 4.3 | Medium | 2025-04-27 |
| CVE-2025-3806 | dazhouda lecms Edit Profile admin cross site scripting — lecmsCWE-79 | 2.4 | Low | 2025-04-19 |
This page lists every published CVE security advisory associated with dazhouda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.