9 matches found
CVE-2025-15449
A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. Affected is the function delete of the file src/main/java/com/macro/mall/controller/MinioController.java. This manipulation of the argument objectName causes path traversal. The attack can be...
CVE-2025-15449 cld378632668 JavaMall MinioController.java delete path traversal
A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. Affected is the function delete of the file src/main/java/com/macro/mall/controller/MinioController.java. This manipulation of the argument objectName causes path traversal. The attack can be...
PT-2026-1202
Name of the Vulnerable Software and Affected Versions JavaMall versions prior to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0 Description A path traversal issue exists due to manipulation of the objectName argument within the delete function located in the file...
CVE-2025-15152
A vulnerability was identified in h-moses moga-mall up to 392d631a5ef15962a9bddeeb9f1269b9085473fa. This vulnerability affects the function addProduct of the file src/main/java/com/ms/product/controller/PmsProductController.java. Such manipulation of the argument objectName leads to unrestricted...
CVE-2025-15152
A vulnerability was identified in h-moses moga-mall up to 392d631a5ef15962a9bddeeb9f1269b9085473fa. This vulnerability affects the function addProduct of the file src/main/java/com/ms/product/controller/PmsProductController.java. Such manipulation of the argument objectName leads to unrestricted...
CVE-2025-15152 h-moses moga-mall PmsProductController.java addProduct unrestricted upload
A vulnerability was identified in h-moses moga-mall up to 392d631a5ef15962a9bddeeb9f1269b9085473fa. This vulnerability affects the function addProduct of the file src/main/java/com/ms/product/controller/PmsProductController.java. Such manipulation of the argument objectName leads to unrestricted...
CVE-2025-15152
CVE-2025-15152 affects the h-moses moga-mall product service, specifically the addProduct function in src/main/java/com/ms/product/controller/PmsProductController.java. The root cause is manipulation of the objectName argument, enabling unrestricted (unbounded) uploads. The issue is exploitable r...
Gravity GTD <= 0.4.5 (rpc.php objectname) LFI/RCE Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl gravity-gtd = 0.4.5 LFI/RCE Vulnerability Script: An open source list manager for tracking action ite...
Gravity GTD <= 0.4.5 (rpc.php objectname) LFI/RCE Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl gravity-gtd = 0.4.5 LFI/RCE Vulnerability Script: An open source list manager for tracking actio...