Vulnerabilities > Datax WEB Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-12-09 | CVE-2024-12358 | OS Command Injection vulnerability in Datax-Web Project Datax-Web 2.1.1 A vulnerability was found in WeiYe-Jing datax-web 2.1.1. | 8.8 |
2023-12-27 | CVE-2023-7116 | Unspecified vulnerability in Datax-Web Project Datax-Web 2.1.2 A vulnerability, which was classified as critical, has been found in WeiYe-Jing datax-web 2.1.2. | 9.8 |
2023-01-13 | CVE-2022-46478 | Deserialization of Untrusted Data vulnerability in Datax-Web Project Datax-Web The RPC interface in datax-web v1.0.0 and v2.0.0 to v2.1.2 contains no permission checks by default which allows attackers to execute arbitrary commands via crafted Hessian serialized data. | 9.8 |