JPACookieShop 跨站脚本漏洞

JPACookieShop is a cake mall platform software by Jerryshensjf individual developer. JPACookieShop cross-site scripting vulnerability, the vulnerability stems from the file GoodsCustController.java function goodsSearch parameter keyword leads to cross-site scripting...

CVE-2025-7938

A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0 and classified as critical. This issue affects the function updateGoods of the file GoodsController.java. The manipulation leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclosed to th...