3 matches found
Logic Design Vulnerability in LeShang Mall System v2.2.0
LeShang mall system is a based on THINKPHP5.0 as the core development of a free open source professional mall system. LeShang Mall System v2.2.0 has a logical design vulnerability. Attackers can overstep their authority to modify other users' personal information, including user passwords, by...
Stored Cross-site Scripting Vulnerability in LeShang Mall System v2.2.0
LeShang mall system is a based on THINKPHP5.0 as the core development of a free open source professional mall system. LeShang Mall System v2.2.0 has a stored cross-site scripting vulnerability. An attacker can insert malicious js code in the page to obtain user cookies and other information,...
Code Execution Vulnerability in LeShang Mall System v2.2.0
LeShang mall system is a based on THINKPHP5.0 as the core development of a free open source professional mall system. Code execution vulnerability exists in LeShang Mall System v2.2.0. An attacker can exploit the vulnerability to write arbitrary files and gain server privileges...