| Description: | | Weaver e-cology provides an integrated mobile office cloud platform, integrating work reporting, project tasks, CRM, knowledge sharing, approval process, data collaboration and other applications in one. Before the version of Weaver e-cology 9.0 10.57.2, there existed any user login vulnerability, which was caused by the third-party login key hard-coded in the background, and the attacker could use the key to calculate specific parameter values, so as to forge any user and log in to Weaver e-cology. |