Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.8 views

CVE-2024-50654

lilishop =4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in high concurrency...

7.5CVSS6.8AI score0.01564EPSS
Exploits1References1
NVD
NVD
added 2024/11/15 5:15 p.m.27 views

CVE-2024-50654

lilishop =4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in high concurrency...

7.5CVSS0.01564EPSS
Exploits1References2
OSV
OSV
added 2024/11/15 5:15 p.m.8 views

CVE-2024-50654

lilishop =4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in high concurrency...

7.5CVSS6.8AI score0.01564EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.3 views

Lilishop 安全漏洞

Lilishop is a mall system from Lilishop Open Source. A security vulnerability exists in Lilishop version 4.2.4 and prior versions, which stems from an access control error. An attacker exploiting this vulnerability could capture and send coupon collection packets to obtain coupons that exceed the...

7.5CVSS6.6AI score0.01564EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/15 12:0 a.m.11 views

CVE-2024-50654

lilishop =4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in high concurrency...

6.8AI score0.01564EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.6 views

PT-2024-34382 · Lilishop · Lilishop

Name of the Vulnerable Software and Affected Versions: lilishop versions 4.2.4 and earlier Description: The issue allows attackers to bypass access controls, enabling them to obtain coupons beyond the intended quantity limit. This is achieved by capturing and sending data packets for coupon...

7.5CVSS6.8AI score0.01564EPSS
Exploits1References6
CVE
CVE
added 2024/11/15 12:0 a.m.49 views

CVE-2024-50654

Lilishop

7.5CVSS6.9AI score0.01564EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/11/15 12:0 a.m.16 views

CVE-2024-50654

lilishop =4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain coupons beyond the quantity limit by capturing and sending the data packets for coupon collection in high concurrency...

0.01564EPSS
Exploits1References2
Rows per page
Query Builder