CVE-2026-3028 in JEEWMSinfo

Zusammenfassung

von MITRE • 24.02.2026

A vulnerability was determined in erzhongxmu JEEWMS up to 3.7. This vulnerability affects the function doAdd of the file src/main/java/com/jeecg/demo/controller/JeecgListDemoController.java. This manipulation of the argument Name causes cross site scripting. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

24.02.2026

Moderieren

akzeptiert

Eintrag

VDB-347384

CPE

bereit

CWE

CWE-79 (bestätigt)

Exploit

Download

CVSS

4.3 (VulDB)

EPSS

0.00047

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-3028
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-3028
CVE Details	https://www.cvedetails.com/cve/CVE-2026-3028/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!