4 matches found
crmeb_java 安全漏洞
Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in versions prior to crmebjava v1.3.4, which stems from the presence of a SQL injection vulnerability that allows an attacker to run arbitrary SQL...
Zhongbang CRMEB 安全漏洞
Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Xi'an, China. A security vulnerability exists in CRMEB version 4.4.4, which is caused by an arbitrary file download...
Xxe
" Security vulnerability in HCL Commerce Management Center allowing XML external entity XXE injection"...
CVE-2021-27741
CVE-2021-27741 affects the HCL Commerce Management Center and is caused by an XML External Entity (XXE) injection. According to the stored records, the vulnerability has a CVSS v3.1 base score of 9.1 (CRITICAL) with network attack vector, low attack complexity, no privileges required, and impacts...