Lucene search
K

8 matches found

CVE
CVE
added 2025/07/25 3:32 a.m.19 views

CVE-2025-8128

CVE-2025-8128 affects zhousg letao. A vulnerability in the product route handling allows manipulation of an upload parameter (pictrdtz) leading to unrestricted file uploads. Exploit remote, disclosed publicly; but exact affected versions are not specified in the provided materials. Some sources n...

6.5CVSS6.4AI score0.00308EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/25 3:32 a.m.12 views

CVE-2025-8128 zhousg letao product.js unrestricted upload

A vulnerability, which was classified as critical, has been found in zhousg letao up to 7d8df0386a65228476290949e0413de48f7fbe98. This issue affects some unknown processing of the file routes\bf\product.js. The manipulation of the argument pictrdtz leads to unrestricted upload. The attack may be...

6.5CVSS0.00308EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/25 3:32 a.m.1 views

CVE-2025-8128 zhousg letao product.js unrestricted upload

A vulnerability, which was classified as critical, has been found in zhousg letao up to 7d8df0386a65228476290949e0413de48f7fbe98. This issue affects some unknown processing of the file routes\bf\product.js. The manipulation of the argument pictrdtz leads to unrestricted upload. The attack may be...

6.5CVSS7.2AI score0.00308EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/25 12:0 a.m.2 views

PT-2025-30725 · Unknown · Zhousg Letao

Name of the Vulnerable Software and Affected Versions: zhousg letao affected versions not specified Description: A critical vulnerability exists in zhousg letao due to unrestricted file upload. The issue stems from improper processing of file routesbfproduct.js, specifically through manipulation ...

6.5CVSS6.2AI score0.00308EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.3 views

letao 代码问题漏洞

letao is a shoe mall by ShuGang Zhou, an individual developer. A code issue vulnerability exists in letao, which stems from the incorrect operation of the parameter pictrdtz in the file routesfproduct.js, resulting in unlimited uploads...

6.5CVSS6.6AI score0.00308EPSS
Exploits0References6
Openbugbounty
Openbugbounty
added 2020/09/12 10:33 a.m.12 views

www2.letao-cn.com Cross Site Scripting vulnerability OBB-1329250

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.6AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/09 8:33 a.m.6 views

www2.letao-cn.com Cross Site Scripting vulnerability OBB-1317433

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/09/06 6:56 a.m.6 views

www2.letao-cn.com Cross Site Scripting vulnerability OBB-1306446

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Rows per page
Query Builder