48 matches found
Arbitrary File Read Vulnerability in MyCnCart of Qingdao All-in-One Network Technology Co.
MyCnCart MCC for short is a free, open source B2C, B2B e-commerce platform system developed for the Chinese mainland market. MyCnCart has an arbitrary file read vulnerability that can be exploited by attackers to obtain sensitive information...
XML Entity Injection Vulnerability in oscshop2 Backend
oscshop2 is an open source free B2C mall system designed using thinkphp5, including micro-channel cell phone, follow the Apache2 open source agreement release. oscshop2 backend XML entity injection vulnerability exists . Attackers can use the vulnerability to obtain sensitive information...
Command Execution Vulnerability in SDCMS-B2C Mall Website Management System (CNVD-2021-25006)
SDCMS-B2C mall website management system integrates city substation, cloud storage, three-level distribution, WeChat public number, combination package, multi-people group and many other functions in one marketing mall management system. SDCMS-B2C Mall Website Management System has a command...
SDCMS has an information leakage vulnerability
SDCMS is a B2C mall website management system independently developed by Vivid Network, PHP four-in-one website management system. SDCMS has an information leakage vulnerability, which can be exploited by attackers to obtain sensitive information...
Edgeworkers Use Story: Creating High-Performing, Individualized Campaign Responses in Online Retail
As campaigns and digital experiences become more individualized, they can create a challenge for delivering content to consumers at the highest velocity. Having each paid search, social media, and email marketing campaign add unique query string parameters to requests is critical for tracking the...
SQL Injection Vulnerability in Easy B2C Mall System (CNVD-2020-48960)
Easy B2C mall system is a mall system based on open source framework development. Easy B2C Mall System has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in Easy B2C Mall System V1.1 version po***.php
Easy B2C mall system is a mall system based on open source framework development. Easy B2C mall system V1.1 version po.php SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...
Easy B2C Mall System d***.php file exists arbitrary SQL statement execution vulnerability
Easy B2C mall system is a mall system based on open source framework development. Easy B2C mall system d.php file exists arbitrary SQL statement execution vulnerability. An attacker can exploit the vulnerability to execute arbitrary SQL statements within the file...
SQL injection vulnerability in we***.php page na*** parameters of Easy B2C Mall system
Easy B2C mall system is a mall system based on open source framework development. Easy B2C mall system we.php page na parameters exist SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...
SQL Injection Vulnerability in B2C Single Merchant Mall System
B2C single merchant mall system is a PHP open source e-commerce system designed and developed independently by Shanxi Niu Cool Information Technology Co. B2C single merchant mall system SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...
Stored Cross-site Scripting Vulnerability in UEESHOP B2C Website Builder System
Ueeshop is the earliest self-built website platform focusing on cross-border e-commerce in China, providing fast self-built website services for cross-border e-commerce retail sellers and foreign trade exporters. UEESHOP B2C website building system has a stored cross-site scripting vulnerability,...
SQL Injection Vulnerability in B2C_UQ Cloud Business System (CNVD-2019-18480)
UQ Cloud Business System B2C version is a compact e-commerce system, the platform is developed by PHP7.0+Mysql. B2CUQ Cloud Business System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...
com.microsoft.azure:azure-active-directory-b2c-spring-boot-starter (>=2.1.4.M1 <=2.1.6.M2), com.sap.cloud.security.xsuaa:spring-xsuaa (>=1.1.0 <=2.1.0) +4 more potentially affected by CVE-2018-15801 via org.springframework.security:spring-security-oauth2-jose (>=5.1.10.RELEASE <=5.1.1.RELEASE)
org.springframework.security:spring-security-oauth2-jose MAVEN version =5.1.10.RELEASE, =2.1.4.M1, =1.1.0, =1.2.0, =1.2.0, =2.1.0.RELEASE, =2.1.0.RELEASE, =2.1.18.RELEASE Source cves: CVE-2018-15801 Source advisory: OSV:GHSA-27XW-P8V6-9JJR...
PHPSHE B2C Mall System V1.7 SQL Injection Vulnerability in Background
PHPSHE B2C mall system is an online shopping mall system. The system supports express tracking, online chat, order evaluation and statistics. PHPSHE B2C Mall System V1.7 has a SQL injection vulnerability in the background. An attacker can exploit the vulnerability to obtain sensitive database...
SAP B2B / B2C CRM 2.x < 4.x - Local File Inclusion Vulnerability
Exploit for linux platform in category web applications Title: SAP B2B / B2C CRM 2.x 4.x - Local File Inclusion Application:SAP B2B OR B2C is CRM Versions Affected: SAP B2B OR B2C is CRM 2.x 3.x and 4.x with Bakend R/3 to icssb2b Vendor URL: http://SAP.com Bugs: SAP LFI in B2B OR B2C CRM Sent:...
SAP B2B / B2C CRM Local File Inclusion
Title: SAP B2B / B2C CRM 2.x 4.x - Local File Inclusion Application:SAP B2B OR B2C is CRM Versions Affected: SAP B2B OR B2C is CRM 2.x 3.x and 4.x with Bakend R/3 to icssb2b Vendor URL: http://SAP.com Bugs: SAP LFI in B2B OR B2C CRM Sent: 2018-05-03 Reported: 2018-05-03 Date of Public Advisory:...
SAP B2B / B2C CRM 2.x < 4.x - Local File Inclusion
Title: SAP B2B / B2C CRM 2.x 4.x - Local File Inclusion Application:SAP B2B OR B2C is CRM Versions Affected: SAP B2B OR B2C is CRM 2.x 3.x and 4.x with Bakend R/3 to icssb2b Vendor URL: http://SAP.com Bugs: SAP LFI in B2B OR B2C CRM Sent: 2018-05-03 Reported: 2018-05-03 Date of Public Advisory:...
Niushop_b2c Wchat.php file has xml entity injection vulnerability
NiuShop open source mall system is by Shanxi Niu Cool Information Technology Co., Ltd. completely independent design, research and development of a set of PHP open source e-commerce system . Niushopb2c official version 1.0 of the Wchat.php file exists xml entity injection vulnerability , due to t...
Multiple XSS Vulnerabilities in PHPSHE B2C Mall System v1.5
PHPSHE online shopping mall system provides users with a low-cost, high-efficiency online shopping mall construction program. Multiple XSS vulnerabilities exist in PHPSHE B2C Mall System v1.5. An attacker can exploit this vulnerability to obtain information such as login cookies of administrative...
PHPSHE B2C 注入第一枚、
简要描述: PHPSHE B2C商城系统 v1.2build 20140519 UTF8 详细说明: 在index.php中 $cachecategoryarr = cache::get'categoryarr'; $cacheclass = cache::get'class'; $cachead = cache::get'ad'; $cachelink = cache::get'link'; $cachepage = cache::get'page'; $webqq = $cachesetting'webqq''settingvalue' ? explode',',...