CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

62 matches found

EUVD•added 2026/02/27 6:31 a.m.•6 views

EUVD-2026-8996

A security flaw has been discovered in youlaitech youlai-mall 2.0.0. This affects the function listPagedSpuForApp of the file mall-pms/pms-boot/src/main/java/com/youlai/mall/pms/controller/app/SpuController.java of the component App-side Product Pagination Endpoint. Performing a manipulation of t...

6.5CVSS5.2AI score0.0039EPSS

Exploits1References5

OSV•added 2026/02/27 5:18 a.m.•3 views

CVE-2026-3287

9.8CVSS5.6AI score0.0039EPSS

Exploits1References4

NVD•added 2026/02/27 5:18 a.m.•5 views

CVE-2026-3287

9.8CVSS0.0039EPSS

Exploits1References4

ATTACKERKB•added 2026/02/27 4:2 a.m.•3 views

CVE-2026-3287

9.8CVSS6.4AI score0.0039EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/02/27 4:2 a.m.•23 views

CVE-2026-3287 youlaitech youlai-mall App-side Product Pagination Endpoint SpuController.java listPagedSpuForApp sql injection

6.5CVSS0.0039EPSS

Exploits1References4

Vulnrichment•added 2026/02/27 4:2 a.m.•6 views

CVE-2026-3287 youlaitech youlai-mall App-side Product Pagination Endpoint SpuController.java listPagedSpuForApp sql injection

6.5CVSS6.4AI score0.0039EPSS

Exploits1References4

CNNVD•added 2026/02/27 12:0 a.m.•5 views

youlai-mall SQL注入漏洞

Youlai-Mall is a full-stack e-commerce system developed by Youlaitech. Version 2.0.0 of Youlai-Mall has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter sortField/sort in the function listPagedSpuForApp located in the...

9.8CVSS6.6AI score0.0039EPSS

Exploits1References5

Positive Technologies•added 2026/02/27 12:0 a.m.•6 views

PT-2026-22296

6.5CVSS6.2AI score0.0039EPSS

Exploits1References5

RedhatCVE•added 2025/12/26 9:23 p.m.•9 views

CVE-2025-15087

A security vulnerability has been detected in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function submitOrderPayment of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java. Such manipulation of the argument orderSn leads to improper...

5.3CVSS4.9AI score0.00231EPSS

Exploits1References1

RedhatCVE•added 2025/12/26 7:2 p.m.•13 views

CVE-2025-15084

A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...

3.1CVSS6.5AI score0.00245EPSS

Exploits1References1

EUVD•added 2025/12/25 9:30 p.m.•4 views

EUVD-2025-205383

3.1CVSS6.2AI score0.00245EPSS

Exploits1References5

EUVD•added 2025/12/25 9:30 p.m.•5 views

EUVD-2025-205389

A security flaw has been discovered in youlaitech youlai-mall 1.0.0/2.0.0. This affects the function deductBalance of the file mall-ums/ums-boot/src/main/java/com/youlai/mall/ums/controller/app/MemberController.java of the component Balance Handler. The manipulation results in improper...

5.3CVSS6.1AI score0.00259EPSS

Exploits0References5

EUVD•added 2025/12/25 9:30 p.m.•4 views

EUVD-2025-205391

A weakness has been identified in youlaitech youlai-mall 1.0.0/2.0.0. This impacts the function getMemberByMobile of the file mall-ums/ums-boot/src/main/java/com/youlai/mall/ums/controller/app/MemberController.java. This manipulation causes improper access controls. The attack may be initiated...

5.3CVSS6.2AI score0.00258EPSS

Exploits1References5

OSV•added 2025/12/25 9:15 p.m.•1 views

CVE-2025-15087

5.3CVSS5.5AI score0.00231EPSS

Exploits1References4

NVD•added 2025/12/25 9:15 p.m.•4 views

CVE-2025-15087

5.3CVSS0.00231EPSS

Exploits1References4

OSV•added 2025/12/25 9:15 p.m.•4 views

CVE-2025-15086