mall 授权问题漏洞

Mall is a set of e-commerce systems developed by Macro Personal Developers, including a front-end shopping mall system and a back-end management system. Versions of Mall 1.0.3 and earlier had authorization-related vulnerabilities. These vulnerabilities stemmed from improper authorization in the...

mall 路径遍历漏洞

mall is a macro individual developer of a set of e-commerce system, including the front mall system and backend management system. mall 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 and previous versions of the path traversal vulnerability exists, the vulnerability stems from the file...

CVE-2025-14259 Jihai Jshop MiniProgram Mall System api.html sql injection

A vulnerability was found in Jihai Jshop MiniProgram Mall System 2.9.0. Affected by this issue is some unknown functionality of the file /index.php/api.html. The manipulation of the argument catid results in sql injection. The attack may be launched remotely. The exploit has been made public and...

EUVD-2025-201797

A vulnerability was found in Jihai Jshop MiniProgram Mall System 2.9.0. Affected by this issue is some unknown functionality of the file /index.php/api.html. The manipulation of the argument catid results in sql injection. The attack may be launched remotely. The exploit has been made public and...

CVE-2025-14259 Jihai Jshop MiniProgram Mall System api.html sql injection

A vulnerability was found in Jihai Jshop MiniProgram Mall System 2.9.0. Affected by this issue is some unknown functionality of the file /index.php/api.html. The manipulation of the argument catid results in sql injection. The attack may be launched remotely. The exploit has been made public and...

mall 访问控制错误漏洞

mall is an e-commerce system for macro individual developers, including frontend mall system and backend management system. An access control error vulnerability exists in mall 1.0.3 and earlier versions, which stems from improper access control and could lead to remote attacks...

mall-swarm 授权问题漏洞

mall-swarm is a microservice mall system. There is an authorization issue vulnerability in mall-swarm, which originates from the improper handling of the orderId parameter in the cancelUserOrder function in the file /order/cancelUserOrder, and no detailed vulnerability details are provided...

CVE-2025-12290

A vulnerability has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this issue is some unknown functionality of the file /i/359. The manipulation of the argument keywords leads to cross site scripting. The attack is possible t...

CVE-2025-12290

CVE-2025-12290 affects Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. The vulnerability is a cross-site scripting in the file /i/359 created by manipulating the keywords argument. It is exploitable remotely, with exploitation details publicly disclose...

CVE-2025-12289 Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1001 cross site scripting

A flaw has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this vulnerability is an unknown functionality of the file /Point/index/activitystate/1/categoryid/1001. Executing manipulation of the argument categoryid can lead to...

EUVD-2025-36195

A flaw has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this vulnerability is an unknown functionality of the file /Point/index/activitystate/1/categoryid/1001. Executing manipulation of the argument categoryid can lead to...

CVE-2025-12289 Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1001 cross site scripting

A flaw has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this vulnerability is an unknown functionality of the file /Point/index/activitystate/1/categoryid/1001. Executing manipulation of the argument categoryid can lead to...

Suishang Enterprise-Level B2B2C Multi-User Mall System 安全漏洞

Suishang Enterprise-Level B2B2C Multi-User Mall System is an e-commerce system software from China Suishang Company. A security vulnerability exists in Suishang Enterprise-Level B2B2C Multi-User Mall System version 1.0, which originates from the incorrect operation of the parameter keywords in th...

PT-2025-43969

Name of the Vulnerable Software and Affected Versions Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System version 1.0 Description A cross site scripting issue exists in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System...

Suishang Enterprise-Level B2B2C Multi-User Mall System 安全漏洞

Suishang Enterprise-Level B2B2C Multi-User Mall System is an e-commerce system software from China Suishang Company. A security vulnerability exists in Suishang Enterprise-Level B2B2C Multi-User Mall System version 1.0, which originates from the incorrect operation of the parameter categoryid in...

EUVD-2022-35326

Malicious code in bioql PyPI...

EUVD-2022-38048

Malicious code in bioql PyPI...

CVE-2022-30113

Electronic mall system 1.0build20200203 is affected vulnerable to SQL Injection...

CVE-2022-35154

Shopro Mall System v1.3.8 was discovered to contain a SQL injection vulnerability via the value parameter...

CVE-2020-18020

SQL Injection in PHPSHE Mall System v1.7 allows remote attackers to execute arbitrary code by injecting SQL commands into the "userphone" parameter of a crafted HTTP request to the "admin.php" component...