7 matches found
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
java_shop 安全漏洞
javashop is a Java-based mall website system designed and implemented by Tim Green, an individual developer. A security vulnerability exists in javashop version 1.0, which stems from incorrect access control. An attacker can exploit the vulnerability to obtain sensitive information about users wi...
PT-2024-34379 · Java Shop · Java Shop
Name of the Vulnerable Software and Affected Versions: java shop version 1.0 Description: The issue allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter. This is due to an Incorrect Access Control flaw. Recommendations: For java shop version...
PT-2024-34380 · Java Shop · Java Shop
Name of the Vulnerable Software and Affected Versions: java shop version 1.0 Description: A file upload issue allows attackers to upload arbitrary files by modifying the avatar function. This enables them to upload any file they want by changing the avatar function. Recommendations: For java shop...