CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php...

5.3CVSS7.4AI score0.00264EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:19 a.m.•7 views

CVE-2022-30059

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...

6.5CVSS7.4AI score0.00409EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:52 p.m.•6 views

CVE-2022-27125

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

6.1CVSS6AI score0.0024EPSS

Exploits0References1

ATTACKERKB•added 2022/05/11 6:15 p.m.•1 views

CVE-2022-30059

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...

6.5CVSS5.9AI score0.00409EPSS

Exploits1References2

NVD•added 2022/05/11 6:15 p.m.•12 views

CVE-2022-30058

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php...

5.3CVSS0.00264EPSS

Exploits1References1

NVD•added 2022/05/11 6:15 p.m.•11 views

CVE-2022-30059

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...

6.5CVSS0.00409EPSS

Exploits1References1

ATTACKERKB•added 2022/05/11 6:15 p.m.•1 views

CVE-2022-30058

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php...

5.3CVSS5.9AI score0.00264EPSS

Exploits1References2

Prion•added 2022/05/11 6:15 p.m.•19 views

Arbitrary file deletion

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...

5.5CVSS6.5AI score0.00409EPSS

Exploits1References1Affected Software1

CVE•added 2022/05/11 5:48 p.m.•69 views

CVE-2022-30058

CVE-2022-30058 affects Shopwind

5.3CVSS5.3AI score0.00264EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/05/11 5:48 p.m.•16 views

CVE-2022-30058

Shopwind =v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php...

5.6AI score0.00264EPSS

Exploits1References1

CNNVD•added 2022/05/11 12:0 a.m.•3 views

ShopWind 路径遍历漏洞

ShopWind is a B2B2C, O2O industry e-commerce system software based on the Yii2.0 framework deeply reconstructed by China ShopWind. You can easily create and publish your own brand of professional e-commerce platform for a full range of branding and product promotion. Shopwind v3.4.2 version and t...

6.5CVSS6.7AI score0.00409EPSS

Exploits1References2

CNNVD•added 2022/05/11 12:0 a.m.•2 views

ShopWind 路径遍历漏洞

5.3CVSS6AI score0.00264EPSS

Exploits1References2

ATTACKERKB•added 2022/04/10 9:15 p.m.•2 views

CVE-2022-27125

zbzcms v1.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the neirong parameter at /php/ajax.php...

6.1CVSS5.8AI score0.0024EPSS

Exploits0References2

NVD•added 2022/04/10 9:15 p.m.•9 views