Browse all 8 CVE security advisories affecting deerwms. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Deerwms is a web server management system primarily used for hosting and serving web content. Historically, it has been vulnerable to multiple remote code execution flaws, cross-site scripting (XSS) vulnerabilities, and privilege escalation issues. The software has accumulated eight CVEs, with several critical RCE vulnerabilities allowing attackers to execute arbitrary code on affected systems. Security researchers have identified consistent input validation weaknesses and insufficient access controls in multiple versions. While no major public security incidents have been widely documented, the pattern of vulnerabilities suggests potential for significant compromise if deployed without proper hardening or timely patching.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-8163 | deerwms deer-wms-2 list sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8162 | deerwms deer-wms-2 list sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8161 | deerwms deer-wms-2 export sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8127 | deerwms deer-wms-2 list sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8126 | deerwms deer-wms-2 export sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8125 | deerwms deer-wms-2 allocatedList sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-25 |
| CVE-2025-8124 | deerwms deer-wms-2 unallocatedList sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-24 |
| CVE-2025-8123 | deerwms deer-wms-2 edit sql injection — deer-wms-2CWE-89 | 6.3 | Medium | 2025-07-24 |
This page lists every published CVE security advisory associated with deerwms. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.