dromara Exploited Vulnerabilities
Dromara vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Code Injection Vulnerability in Dromara Warm-Flow Product
CVE-2026-6125DromaraWarm-flowπΎπ‘5.3MEDIUMImproper Authorization in Dromara Lamp-Cloud Affects Remote User Management
CVE-2026-5529DromaraLamp-cloudπΎπ‘5.3MEDIUMRemote Code Injection Vulnerability in Dromara UJCMS Product
CVE-2026-2954DromaraUjcmsπΎπ‘5.3MEDIUMPath Traversal Vulnerability in Dromara UJCMS 101.2
CVE-2026-2953DromaraUjcmsπΎπ‘5.3MEDIUMDeserialization Vulnerability in Dromara Sa-Token by Dromara
CVE-2025-15222DromaraSa-tokenπΎπ‘2.3LOWInjection Vulnerability in Dromara DataCompare JDBC URL Handler of Dromara
CVE-2025-13268DromaraDatacompareπΎπ‘5.3MEDIUMPath Traversal Vulnerability in Dromara RuoYi-Vue-Plus Mail Handler
CVE-2025-6925DromaraRuoyi-vue-plusπΎπ‘6.9MEDIUMServer-Side Request Forgery in Dromara MaxKey Affects Meta URL Handler
CVE-2025-6517DromaraMaxkeyπΎπ‘5.3MEDIUM