dromara
Security Risk Profile
Security Risk Score
Comprehensive risk assessment based on 19 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from June 15, 2023 to present
Threat Assessment
Severity Distribution
Exploit Likelihood
Age Distribution
Common Weaknesses (CWE)
Most Affected Products
Recent Vulnerabilities
See more →Dromara lamp-cloud Message Template GroovyClassLoader.parseClass special elements used in a template engine
Dromara MaxKey StrUtils.java StrUtils.checkSqlInjection sql injection
Dromara warm-flow Workflow Definition save-json SpelHelper.parseExpression code injection
Dromara lamp-cloud DefUserController pageUser improper authorization
Dromara UJCMS ImportDataController import-channel importChanel injection
Dromara UJCMS Template WebFileTemplateController.delete deleteDirectory path traversal
Dromara RuoYi-Vue-Plus Workflow deleteByInstanceIds SaServletFilter authorization
Dromara dataCompare JDBC URL DbconfigServiceImpl.java DbConfig injection
Dromara Northstar Path AuthorizationInterceptor.java preHandle access control
Monitor dromara in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.