Winegee

**Name of the Vulnerable Software and Affected Versions** baomidou dynamic-datasource version 2.5.0 **Description** An injection issue exists in the `doDetermineDatasource()` function within the `DsSpelExpressionProcessor` class. This flaw, located in the `StandardEvaluationContext`/`SpelExpressionParser` component, allows for remote manipulation. **Recommendations** Apply patch 273fcedaee984c08197c0890f14190b86ab7e0b8 to version 2.5.0. As a temporary workaround, restrict access to the `doDetermineDatasource()` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IhateCreatingUserNames2 AiraHub2 versions prior to 3e4b77fd7d48ed811ffe5b8d222068c17c76495e **Description** A server-side request forgery (SSRF) exists in the Endpoint component. This issue occurs within the `connect stream endpoint/sync agents()` function of the `AiraHub.py` file. A remote attacker can initiate a manipulation that allows the server to make unauthorized requests to internal or external resources. **Recommendations** Update to a version later than 3e4b77fd7d48ed811ffe5b8d222068c17c76495e. As a temporary workaround, restrict access to the `connect stream endpoint/sync agents()` function to minimize the risk of exploitation.

A weakness has been identified in mingSoft MCMS up to 5.5.0. This issue affects the function catchImage of the file net/mingsoft/cms/action/BaseAction.java of the component Editor Endpoint. Executing a manipulation of the argument catchimage can lead to server-side request forgery. It is possible to launch the attack remotely. The exploit has been made available to the public and could be used for attacks.

A security vulnerability has been detected in mingSoft MCMS up to 5.5.0. Impacted is the function list of the file net/mingsoft/cms/action/web/ContentAction.java of the component Web Content List Endpoint. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

**Name of the Vulnerable Software and Affected Versions** 648540858 wvp-GB28181-pro versions up to 2.7.4 **Description** A security flaw exists in the 648540858 wvp-GB28181-pro software. The issue is related to deserialization within the `GenericFastJsonRedisSerializer` function located in the file src/main/java/com/genersoft/iot/vmp/conf/redis/RedisTemplateConfig.java of the API Endpoint component. This allows for remote attacks. The exploit is publicly available. The vendor was notified but did not respond. **Recommendations** Versions prior to 2.7.4 should be updated. As a temporary workaround, consider disabling the API Endpoint component until a patch is available.