Browse all 3 CVE security advisories affecting wander-chu. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Wander-chu develops web application frameworks primarily used for building dynamic content management systems. Their products have historically been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with three CVEs currently documented. Security researchers have identified consistent patterns in input validation flaws and insufficient access controls across multiple versions. While no major public security incidents have been reported, the persistent nature of these vulnerabilities suggests ongoing challenges in secure coding practices. The framework's widespread adoption in enterprise environments increases potential impact, though remediation efforts appear to align with industry response times for similar open-source projects.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-13202 | wander-chu SpringBoot-Blog Blog Article PageController.java modifiyArticle cross site scripting — SpringBoot-BlogCWE-79 | 2.4 | Low | 2025-01-09 |
| CVE-2024-13201 | wander-chu SpringBoot-Blog Admin Attachment AttachtController.java upload unrestricted upload — SpringBoot-BlogCWE-434 | 4.7 | Medium | 2025-01-09 |
| CVE-2024-13200 | wander-chu SpringBoot-Blog HTTP POST Request BaseInterceptor.java preHandle access control — SpringBoot-BlogCWE-284 | 7.3 | High | 2025-01-09 |
This page lists every published CVE security advisory associated with wander-chu. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.