Vulnerabilities > Jeewms

DATE CVE VULNERABILITY TITLE RISK
2024-03-05 CVE-2024-27764 Path Traversal vulnerability in Jeewms
An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component.
network
low complexity
jeewms CWE-22
critical
 9.8
9.8
2024-03-05 CVE-2024-27765 Path Traversal vulnerability in Jeewms
Directory Traversal vulnerability in Jeewms v.3.7 and before allows a remote attacker to obtain sensitive information via the cgformTemplateController component.
network
low complexity
jeewms CWE-22
7.5
7.5