Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

69 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-24868

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00109EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-24059

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00156EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-47549

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00328EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-24958

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00135EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-19202

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00329EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-24052

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00295EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/09/14 6:15 a.m.15 views

CVE-2025-10291

A weakness has been identified in linlinjava litemall up to 1.8.0. This affects the function WxAftersaleController of the file /wx/aftersale/cancel. Executing manipulation of the argument ID can lead to improper authorization. The attack can be executed remotely. The exploit has been made availab...

6.5CVSS6.3AI score0.00093EPSS
Exploits0References1
NVD
NVDadded 2025/09/12 6:15 a.m.4 views

CVE-2025-10291

A weakness has been identified in linlinjava litemall up to 1.8.0. This affects the function WxAftersaleController of the file /wx/aftersale/cancel. Executing manipulation of the argument ID can lead to improper authorization. The attack can be executed remotely. The exploit has been made availab...

8.8CVSS0.00093EPSS
Exploits0References4
CVE
CVEadded 2025/09/12 5:32 a.m.13 views

CVE-2025-10291

Affects linlinjava litemall up to 1.8.0. The vulnerability resides in WxAftersaleController at /wx/aftersale/cancel, where manipulating the ID argument can cause improper authorization. Exploitation can be performed remotely, and public exploits exist. Multiple sources confirm the issue and note ...

8.8CVSS6.3AI score0.00093EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/09/12 5:32 a.m.3 views

CVE-2025-10291 linlinjava litemall cancel WxAftersaleController improper authorization

A weakness has been identified in linlinjava litemall up to 1.8.0. This affects the function WxAftersaleController of the file /wx/aftersale/cancel. Executing manipulation of the argument ID can lead to improper authorization. The attack can be executed remotely. The exploit has been made availab...

6.5CVSS6.3AI score0.00093EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/09/12 12:0 a.m.3 views

PT-2025-37288

Name of the Vulnerable Software and Affected Versions: linlinjava litemall versions up to 1.8.0 Description: A weakness exists in linlinjava litemall up to version 1.8.0. The issue affects the WxAftersaleController function within the /wx/aftersale/cancel file. Manipulation of the ID argument can...

6.5CVSS6.1AI score0.00093EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/08/17 1:32 a.m.4 views

CVE-2025-8991

A vulnerability was identified in linlinjava litemall up to 1.8.0. Affected by this vulnerability is an unknown functionality of the file /admin/config/express of the component Business Logic Handler. The manipulation of the argument litemallexpressfreightmin leads to business logic errors. The...

5.3CVSS7.2AI score0.00135EPSS
Exploits1References1
NVD
NVDadded 2025/08/15 1:16 a.m.3 views

CVE-2025-8991

A vulnerability was identified in linlinjava litemall up to 1.8.0. Affected by this vulnerability is an unknown functionality of the file /admin/config/express of the component Business Logic Handler. The manipulation of the argument litemallexpressfreightmin leads to business logic errors. The...

5.3CVSS0.00135EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/08/15 12:32 a.m.8 views

CVE-2025-8991 linlinjava litemall Business Logic express logic error

A vulnerability was identified in linlinjava litemall up to 1.8.0. Affected by this vulnerability is an unknown functionality of the file /admin/config/express of the component Business Logic Handler. The manipulation of the argument litemallexpressfreightmin leads to business logic errors. The...

5.3CVSS0.00135EPSS
Exploits1References5
CVE
CVEadded 2025/08/15 12:32 a.m.22 views

CVE-2025-8991

CVE-2025-8991 affects linlinjava litemall versions up to 1.8.0. The vulnerability resides in the Business Logic Handler’s /admin/config/express, where manipulating the litemall_express_freight_min parameter triggers business logic errors. The issue is exploitable remotely and publicized. PT-2025-...

5.3CVSS7.1AI score0.00135EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2025/08/15 12:0 a.m.3 views

PT-2025-33423 · Linlinjava · Litemall

Name of the Vulnerable Software and Affected Versions: linlinjava litemall versions up to 1.8.0 Description: A vulnerability was identified in linlinjava litemall. The issue affects an unknown functionality within the /admin/config/express file of the Business Logic Handler component. Manipulatio...

5.3CVSS4.4AI score0.00135EPSS
Exploits1References9
Vulnrichment
Vulnrichmentadded 2025/08/14 3:32 p.m.5 views

CVE-2025-8965 linlinjava litemall Endpoint AdminStorageController.java create unrestricted upload

A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the function create of the file litemall-admin-api/src/main/java/org/linlinjava/litemall/admin/web/AdminStorageController.java of the component Endpoint. The manipulation of the argument File leads to...

6.5CVSS7.1AI score0.00109EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/08/14 3:32 p.m.10 views

CVE-2025-8965 linlinjava litemall Endpoint AdminStorageController.java create unrestricted upload

A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the function create of the file litemall-admin-api/src/main/java/org/linlinjava/litemall/admin/web/AdminStorageController.java of the component Endpoint. The manipulation of the argument File leads to...

6.5CVSS0.00109EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/08/14 12:0 a.m.7 views

PT-2025-33303 · Linlinjava · Litemall

Name of the Vulnerable Software and Affected Versions: linlinjava litemall versions up to 1.8.0 Description: A vulnerability exists in linlinjava litemall up to version 1.8.0, specifically within the create function located in the file...

6.5CVSS6.3AI score0.00109EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2025/08/14 12:0 a.m.5 views

PT-2025-33360 · Linlinjava · Litemall

Name of the Vulnerable Software and Affected Versions: linlinjava litemall versions up to 1.8.0 Description: A vulnerability exists in linlinjava litemall up to version 1.8.0, specifically within the JSON Web Token Handler component, located in the file...

6.3CVSS4AI score0.00315EPSS
Exploits1References8
Rows per page
Query Builder