{"uuid": "9fab442a-672c-4a1a-9873-f8506e24385e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22679", "type": "seen", "source": "https://thehackernews.com/2026/05/weaver-e-cology-rce-flaw-cve-2026-22679.html", "content": "A critical security vulnerability in Weaver (Fanwei) E-cology, an enterprise office automation (OA) and collaboration platform, has come under active exploitation in the wild.\nThe vulnerability (CVE-2026-22679, CVSS score: 9.8) relates to a case of unauthenticated remote code execution affecting Weaver E-cology 10.0 versions prior to 20260312. The issue resides in the \"/papi/esearch/data/devops/", "creation_timestamp": "2026-05-05T05:37:00.000000Z"}