Casdoor 安全漏洞

Casdoor is an open source platform that supports multiple authentication and authorization protocols by Casdoor Open Source. A security vulnerability exists in Casdoor version 1.577.0 and prior versions, which stems from the purchase URL used to generate a QR code for WeChat Payment is susceptibl...

ai.hyacinth.framework:core-service-admin-server (>=0.5.0 <=0.5.24), ai.hyacinth.framework:core-service-discovery-server (>=0.5.0 <=0.5.24) +5475 more potentially affected by CVE-2020-26259 via com.thoughtworks.xstream:xstream (>=1.1.1 <=1.4.14)

com.thoughtworks.xstream:xstream MAVEN version =1.1.1, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =j8.2.2.0, =Finchley.SR4, =1.0.0.RELEASE, =1.1.0.RELEASE, =1.0.0.RELEASE, =1.1.1.RELEASE, =0.3.3, =0.4.0, =0.4.2 and more Source cves: CVE-2020-26259 Source advisory: OSV:GHSA-JFVX-7WRX-43FH...

Logic Flaw Vulnerability in Shop7 Online Shopping System Flagship Edition

Shop7 online shopping system flagship version is to support Alipay, WeChat payment and a variety of commonly used interfaces, computer version and cell phone version and APP seamless combination of data as a whole. Shop7 online shopping system flagship version of the existence of logical flaws in...

Unauthorized Access Vulnerability in Grindstone Reading App

Grindstone Reading App is a reading software. Unauthorized access vulnerability exists in Grinding Iron Reading APP. An attacker can use the vulnerability to obtain the transaction information of WeChat Payment backend...