cvedb.io
CVE-2025-5389
MEDIUM · CVSS 6.3
EPSS exploitation probability: 0%
Published 2025-05-31T19:15:20.730 · Last modified 2026-06-17T09:47:49.670

Summary

A vulnerability, which was classified as critical, has been found in JeeWMS up to 20250504. Affected by this issue is the function dogenerateOne2Many of the file /generateController.do?dogenerateOne2Many of the component File Handler. The manipulation leads to improper access controls. The attack may be launched remotely. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Affected products

huayi-tec — jeewms

Does this affect you?

Add your gear to cvedb and we'll alert you only when huayi-tec ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.