Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/12/26 7:2 p.m.14 views

CVE-2025-15084

A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...

3.1CVSS6.5AI score0.00245EPSS
Exploits1References1
CVE
CVE
added 2025/12/25 6:32 p.m.12 views

CVE-2025-15084

CVE-2025-15084 affects youlaitech youlai-mall versions 1.0.0–2.0.0, specifically the Order Payment Handler’s OrderController.payOrder in mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/. The root cause is improper access controls in the orderService.payOrder function, enabling ...

3.1CVSS4.3AI score0.00245EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/12/25 6:32 p.m.27 views

CVE-2025-15084 youlaitech youlai-mall Order Payment OrderController.java orderService.payOrder access control

A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...

3.1CVSS0.00245EPSS
Exploits1References4
OSV
OSV
added 2025/12/25 6:32 p.m.4 views

CVE-2025-15084 youlaitech youlai-mall Order Payment OrderController.java orderService.payOrder access control

A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...

2.3CVSS5.4AI score0.00245EPSS
Exploits1References6
Rows per page
Query Builder