Browse all 4 CVE security advisories affecting witmy. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Witmy is a web-based platform primarily used for online collaboration and document management. Historically, the application has been vulnerable to multiple remote code execution flaws, cross-site scripting (XSS) vulnerabilities, and privilege escalation issues, as evidenced by its four recorded CVEs. These weaknesses often stem from insufficient input validation and improper access controls. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on the platform for sensitive operations. Users are advised to maintain current patches and implement additional security controls to mitigate exposure to these recurring issues.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-6681 | witmy my-springsecurity-plus dept sql injection — my-springsecurity-plusCWE-89 | 6.3 | Medium | 2024-07-11 |
| CVE-2024-6680 | witmy my-springsecurity-plus build sql injection — my-springsecurity-plusCWE-89 | 6.3 | Medium | 2024-07-11 |
| CVE-2024-6679 | witmy my-springsecurity-plus role sql injection — my-springsecurity-plusCWE-89 | 6.3 | Medium | 2024-07-11 |
| CVE-2024-6676 | witmy my-springsecurity-plus user sql injection — my-springsecurity-plusCWE-89 | 6.3 | Medium | 2024-07-11 |
This page lists every published CVE security advisory associated with witmy. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.