11 matches found
CVE-2025-15449
A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. Affected is the function delete of the file src/main/java/com/macro/mall/controller/MinioController.java. This manipulation of the argument objectName causes path traversal. The attack can be...
CVE-2025-15448
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...
CVE-2025-15448
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...
CVE-2025-15449 cld378632668 JavaMall MinioController.java delete path traversal
A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. Affected is the function delete of the file src/main/java/com/macro/mall/controller/MinioController.java. This manipulation of the argument objectName causes path traversal. The attack can be...
CVE-2025-15449
CVE-2025-15449 affects the JavaMall project, specifically the delete function in MinioController.java, where manipulating the objectName argument enables path traversal. This vulnerability can be exploited remotely; affected versions are before 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. Multiple c...
CVE-2025-15448 cld378632668 JavaMall MinioController.java upload unrestricted upload
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...
CVE-2025-15448
CVE-2025-15448 affects JavaMall (up to version 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0). The vulnerability is in the Upload function of MinioController.java (src/main/java/com/macro/mall/controller/MinioController.java), enabling unrestricted file uploads. Root cause and impact details are descr...
CVE-2025-15448 cld378632668 JavaMall MinioController.java upload unrestricted upload
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...
EUVD-2026-0917
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...
PT-2026-1200
Name of the Vulnerable Software and Affected Versions JavaMall versions prior to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 Description A flaw exists in JavaMall that allows for unrestricted file uploads. This issue impacts the Upload function within the file...
PT-2026-1202
Name of the Vulnerable Software and Affected Versions JavaMall versions prior to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 Description A path traversal issue exists due to manipulation of the objectName argument within the delete function located in the file...