Browse all 6 CVE security advisories affecting zhijiantianya. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Zhijiantianya operates as a Chinese social media platform primarily focused on user-generated content and online communities. Historically, the platform has been susceptible to multiple remote code execution (RCE) and cross-site scripting (XSS) vulnerabilities, often stemming from insufficient input validation in user-facing features. Privilege escalation vulnerabilities have also been documented, allowing unauthorized access to administrative functions. The platform's six recorded CVEs highlight consistent security weaknesses in its web application architecture, particularly in areas handling user interactions and content processing. While no major public security incidents have been widely reported, the pattern of vulnerabilities suggests ongoing challenges in maintaining secure development practices for its large user base.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2744 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-news-image path traversal — ruoyi-vue-proCWE-22 | 5.4 | Medium | 2025-03-25 |
| CVE-2025-2743 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-temporary path traversal — ruoyi-vue-proCWE-22 | 4.3 | Medium | 2025-03-25 |
| CVE-2025-2742 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-permanent path traversal — ruoyi-vue-proCWE-22 | 5.4 | Medium | 2025-03-25 |
| CVE-2025-2708 | zhijiantianya ruoyi-vue-pro Backend File Upload Interface upload path traversal — ruoyi-vue-proCWE-22 | 5.4 | Medium | 2025-03-24 |
| CVE-2025-2707 | zhijiantianya ruoyi-vue-pro Front-End Store Interface upload path traversal — ruoyi-vue-proCWE-22 | 5.4 | Medium | 2025-03-24 |
| CVE-2025-2040 | zhijiantianya ruoyi-vue-pro deploy special elements used in a template engine — ruoyi-vue-proCWE-1336 | 6.3 | Medium | 2025-03-06 |
This page lists every published CVE security advisory associated with zhijiantianya. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.