CVE-2023-4559

A vulnerability, which was classified as critical, has been found in Bettershop LaikeTui. Affected by this issue is some unknown functionality of the file index.php?module=api=user=upload of the component POST Request Handler. The manipulation leads to unrestricted upload. The attack may be...

CVE-2023-4988

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This product...

EUVD-2020-11066

Malware in sbrugna...

EUVD-2021-28110

Malicious code in bioql PyPI...

EUVD-2021-28108

Malicious code in bioql PyPI...

EUVD-2023-54818

Malicious code in bioql PyPI...

EUVD-2021-28109

Malicious code in bioql PyPI...

EUVD-2023-54414

Malicious code in bioql PyPI...

CVE-2021-34129

LaikeTui 3.5.0 allows remote authenticated users to delete arbitrary files, as demonstrated by deleting install.lock in order to reinstall the product in an attacker-controlled manner. This deletion is possible via directory traversal in the uploadImg, oldpic, or imgurl parameter...

CVE-2021-34128

LaikeTui 3.5.0 allows remote authenticated users to execute arbitrary PHP code by using index.php?module=system=pay to upload a ZIP archive containing a .php file, as demonstrated by the ../../../../phpinfo.php pathname...

CVE-2021-40955

SQL injection exists in LaiKetui v3.5.0 the background administrator list...

CVE-2021-40954

Laiketui 3.5.0 is affected by an arbitrary file upload vulnerability that can allow an attacker to execute arbitrary code...

CVE-2021-40956

LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and sensitive data can be obtained...

CVE-2020-19159

Cross Site Request Forgery CSRF in LaikeTui v3 allows remote attackers to execute arbitrary code via the component '/index.php?module=member=add'...

CVE-2023-4988

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system&action=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This...

Design/Logic Flaw

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system&action=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This...

CVE-2023-4988 Bettershop LaikeTui unrestricted upload

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system&action=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This...

CVE-2023-4988 Bettershop LaikeTui unrestricted upload

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system&action=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This...

CVE-2023-4988

CVE-2023-4988 affects Bettershop LaikeTui. The vulnerability is in the file index.php?module=system&action=uploadImg, where manipulating the imgFile argument enables unrestricted file upload. Attacks can be initiated remotely; the product does not use versioning, and the specific affected/unaffec...

LaikeTui Code Issue Vulnerability

LaikeTui Laike e-commerce is a stable and small open source mall system for individual developers. Bettershop LaikeTui code problem vulnerability , the vulnerability stems from index.php?module=system&action=uploadImg in the unknown part , through the parameter imgFile lead to unrestricted upload...