Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-16207

Malicious code in bioql PyPI...

9.8CVSS6AI score0.00809EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16212

Malicious code in bioql PyPI...

9.8CVSS6.1AI score0.01123EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.8 views

CVE-2024-0412

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

9.8CVSS9.6AI score0.00809EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.6 views

CVE-2024-0417

A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument memberinfo leads to path traversal: '../filedir'. It is possible to initiate the attack...

9.8CVSS9.5AI score0.01123EPSS
Exploits1References1
OSV
OSV
added 2024/01/11 6:15 p.m.5 views

CVE-2024-0417

A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument memberinfo leads to path traversal: '../filedir'. It is possible to initiate the attack...

9.8CVSS5.4AI score0.01123EPSS
Exploits1References3
Prion
Prion
added 2024/01/11 6:15 p.m.16 views

Path traversal

A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument memberinfo leads to path traversal: '../filedir'. It is possible to initiate the attack...

5.5CVSS7.2AI score0.01123EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/11 6:0 p.m.4 views

CVE-2024-0417 DeShang DSShop MemberAuth.php path traversal

A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument memberinfo leads to path traversal: '../filedir'. It is possible to initiate the attack...

5.5CVSS9.6AI score0.01123EPSS
Exploits1References3
CVE
CVE
added 2024/01/11 6:0 p.m.81 views

CVE-2024-0417

CVE-2024-0417 affects DeShang DSShop up to version 2.1.5, with a path traversal flaw in application/home/controller/MemberAuth.php triggered by manipulating the member_info argument. This vulnerability could be exploited remotely, and public disclosures exist. Multiple connected sources corrobora...

9.8CVSS9.4AI score0.01123EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/11 6:0 p.m.22 views

CVE-2024-0417 DeShang DSShop MemberAuth.php path traversal

A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument memberinfo leads to path traversal: '../filedir'. It is possible to initiate the attack...

5.5CVSS9.7AI score0.01123EPSS
Exploits1References3
NVD
NVD
added 2024/01/11 5:15 p.m.27 views

CVE-2024-0412

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

9.8CVSS6.7AI score0.00809EPSS
Exploits0References3
OSV
OSV
added 2024/01/11 5:15 p.m.5 views

CVE-2024-0412

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

9.8CVSS4.8AI score0.00809EPSS
Exploits0References3
Prion
Prion
added 2024/01/11 5:15 p.m.20 views

Improper access control

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

5CVSS7.4AI score0.00809EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/11 4:31 p.m.7 views

CVE-2024-0412 DeShang DSShop HTTP GET Request install.php access control

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

5.3CVSS9.7AI score0.00809EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/11 4:31 p.m.28 views

CVE-2024-0412 DeShang DSShop HTTP GET Request install.php access control

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

5.3CVSS9.8AI score0.00809EPSS
Exploits0References3
CVE
CVE
added 2024/01/11 4:31 p.m.57 views

CVE-2024-0412

Affected software: DeShang DSShop up to 3.1.0. Vulnerable component/file: HTTP GET Request Handler, public/install.php. Root cause: improper access controls. Impact: allows remote initiation of exploitation; exploit has been disclosed publicly. Current exploit reliability/availability not quantif...

9.8CVSS9.5AI score0.00809EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.5 views

DeShang DSShop Access Control Error Vulnerability

DeShang DSShop is a single-store mobile mall online store system from DeShang, China. The access control error vulnerability exists in DeShang DSShop prior to version 3.1.0. The vulnerability stems from the file public/install.php of the component HTTP GET Request Handler, which results in...

9.8CVSS6.8AI score0.00809EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.4 views

DeShang DSShop Security Vulnerability

DeShang DSShop is a single-store mobile mall online store system from DeShang. A security vulnerability exists in DeShang DSShop before version 2.1.5, which originates from a path traversal caused by the operation of the parameter memberinfo in the file application/home/controller/MemberAuth.php...

9.8CVSS6.7AI score0.01123EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.7 views

PT-2024-15535 · Deshang · Deshang Dsshop

Name of the Vulnerable Software and Affected Versions: DeShang DSShop versions up to 3.1.0 Description: A vulnerability was found in the HTTP GET Request Handler component, specifically affecting the file public/install.php. This issue leads to improper access controls and can be initiated...

9.8CVSS5.5AI score0.00809EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.9 views

PT-2024-15540 · Deshang · Deshang Dsshop

Name of the Vulnerable Software and Affected Versions: DeShang DSShop versions up to 2.1.5 Description: A critical vulnerability was found in DeShang DSShop, affecting an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the member info argument leads to pat...

9.8CVSS5.8AI score0.01123EPSS
Exploits1References8
CNVD
CNVD
added 2019/12/19 12:0 a.m.2 views

Arbitrary File Deletion Vulnerability in DSShop

DSShop is based on ThinkPHP5 framework for the development of a single store mall system, full support for PC, WAP, microblogging and other terminal equipment, designed for business users to adapt to the entire business model of the solution, can fully meet the operational needs. DSShop arbitrary...

7AI score
Exploits0
Rows per page
Query Builder