Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

jdsofttech — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting jdsofttech. AI-powered Chinese analysis, POCs, and references for each vulnerability.

JDSoftTech develops enterprise software solutions, primarily focusing on content management and workflow automation systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely documented, the seven CVEs attributed to their products highlight recurring issues in secure coding practices. Their security posture appears typical for mid-sized software vendors, with vulnerabilities primarily discovered through internal testing and limited external research, suggesting a need for enhanced security-by-design principles in their development lifecycle.

Top products by jdsofttech: School Management System – WPSchoolPress
CVE IDTitleCVSSSeverityPublished
CVE-2025-11981 School Management System – WPSchoolPress <= 2.2.23 - Authenticated (Administrator+) SQL Injection — School Management System – WPSchoolPressCWE-89 4.9 Medium2025-11-14
CVE-2025-1668 School Management System – WPSchoolPress <= 2.2.16 - Missing Authorization to Arbitrary User Deletion — School Management System – WPSchoolPressCWE-862 4.3 Medium2025-03-15
CVE-2025-1667 School Management System – WPSchoolPress <= 2.2.16 - Missing Authorization to Privilege Escalation via Account Takeover — School Management System – WPSchoolPressCWE-639 8.8 High2025-03-15
CVE-2025-1670 School Management System – WPSchoolPress <= 2.2.16 - Authenticated (Parent+) SQL Injection — School Management System – WPSchoolPressCWE-89 6.5 Medium2025-03-15
CVE-2025-1669 School Management System – WPSchoolPress <= 2.2.17 - Authenticated (Teacher+) SQL Injection — School Management System – WPSchoolPressCWE-89 6.5 Medium2025-03-15
CVE-2024-12332 School Management System – WPSchoolPress <= 2.2.14 - Authenticated (Student/Parent+) SQL Injection — School Management System – WPSchoolPressCWE-89 6.5 Medium2025-01-07
CVE-2024-9637 School Management System – WPSchoolPress <= 2.2.10 - Insecure Direct Object Reference to Authenticated (Teacher+) Account Takeover/Privilege Escalation — School Management System – WPSchoolPressCWE-639 8.8 High2024-10-26

This page lists every published CVE security advisory associated with jdsofttech. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.