2 matches found
Arbitrary User Password Reset Vulnerability in BBCBuilder E-Commerce System
BBCBuilder e-commerce system is a b2b2c model developed by Yuanfeng Company, which supports the e-commerce system of platform self-supporting and supplier store coexistence mode. BBCBuilder e-commerce system version 2.6.1, there is an arbitrary user password reset vulnerability, attackers use the...
Cross-Site Request Forgery Vulnerability in the User Center of BBCBuilder E-Commerce System
BBCBuilder e-commerce system is a b2b2c model developed by Yuanfeng Company, which supports the e-commerce system of platform self-supporting and supplier store coexistence mode. A cross-site request forgery vulnerability exists in the user center of the BBCBuilder e-commerce system, which allows...