Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/08/11 2:29 p.m.8 views

CVE-2025-8753

A vulnerability, which was classified as critical, has been found in linlinjava litemall up to 1.8.0. Affected by this issue is the function delete of the file /admin/storage/delete of the component File Handler. The manipulation of the argument key leads to path traversal. The attack may be...

5.5CVSS7.2AI score0.00497EPSS
Exploits1References1
NVD
NVD
added 2025/08/09 7:15 p.m.11 views

CVE-2025-8764

A vulnerability classified as critical has been found in linlinjava litemall up to 1.8.0. Affected is the function Upload of the file /wx/storage/upload. The manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclose...

6.5CVSS0.00242EPSS
Exploits1References5
CVE
CVE
added 2024/09/19 12:0 a.m.49 views

CVE-2024-46382

CVE-2024-46382 describes a SQL injection in linlinjava’s Litemall 1.8.0. The vulnerability affects the AdminGoodsController.java parameters goodsId, goodsSn, and name, enabling a remote attacker to exfiltrate sensitive information. The root cause is a missing/insufficient input sanitization or pa...

7.5CVSS5.7AI score0.00631EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/19 12:0 a.m.19 views

CVE-2024-46382

A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain sensitive information via the goodsId, goodsSn, and name parameters in AdminOrderController.java...

5.7AI score0.00631EPSS
Exploits1References1
CVE
CVE
added 2024/07/02 8:0 p.m.49 views

CVE-2024-6452

CVE-2024-6452 affects linlinjava Litemall up to 1.8.0. The vulnerability resides in AdminGoodscontroller.java where manipulating the goodsId/goodsSn/name parameters enables SQL injection. It can be exploited remotely, and public disclosures exist. Connected sources consistently describe the impac...

8.8CVSS6.9AI score0.00475EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder