Browse all 3 CVE security advisories affecting 上海灵当信息科技有限公司. AI-powered Chinese analysis, POCs, and references for each vulnerability.
上海灵当信息科技有限公司 develops CRM and customer data management solutions for enterprise clients. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, the three CVEs associated with the company highlight recurring issues in their web application security posture, particularly in API endpoints and user authentication mechanisms. Their security challenges appear consistent with common pitfalls in enterprise software development, emphasizing the need for robust coding practices and regular security assessments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11123 | 上海灵当信息科技有限公司 Lingdang CRM pdf.php path traversal — Lingdang CRMCWE-22 | 4.3 | Medium | 2024-11-12 |
| CVE-2024-11122 | 上海灵当信息科技有限公司 Lingdang CRM index.php unrestricted upload — Lingdang CRMCWE-434 | 6.3 | Medium | 2024-11-12 |
| CVE-2024-11121 | 上海灵当信息科技有限公司 Lingdang CRM index.php sql injection — Lingdang CRMCWE-89 | 6.3 | Medium | 2024-11-12 |
This page lists every published CVE security advisory associated with 上海灵当信息科技有限公司. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.