Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2025/12/25 9:2 p.m.1 views

CVE-2025-15087

A security vulnerability has been detected in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function submitOrderPayment of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java. Such manipulation of the argument orderSn leads to improper...

5.3CVSS5.2AI score0.00231EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.4 views

PT-2025-53414

Name of the Vulnerable Software and Affected Versions youlaitech youlai-mall versions 1.0.0 through 2.0.0 Description A security issue has been identified in youlaitech youlai-mall. Manipulation of the orderSn argument within the submitOrderPayment function, located in the file...

5.3CVSS6.4AI score0.00231EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29147

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00268EPSS
Exploits1References6
NVD
NVD
added 2025/09/15 3:15 a.m.9 views

CVE-2025-10422

A vulnerability has been found in newbee-mall up to 613a662adf1da7623ec34459bc83e3c1b12d8ce7. This issue affects the function paySuccess of the file /paySuccess of the component Order Status Handler. The manipulation of the argument orderNo leads to improper authorization. Remote exploitation of...

5.3CVSS0.00268EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/15 2:32 a.m.3 views

CVE-2025-10422 newbee-mall Order Status paySuccess improper authorization

A vulnerability has been found in newbee-mall up to 613a662adf1da7623ec34459bc83e3c1b12d8ce7. This issue affects the function paySuccess of the file /paySuccess of the component Order Status Handler. The manipulation of the argument orderNo leads to improper authorization. Remote exploitation of...

5.3CVSS6.3AI score0.00268EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/09/12 12:0 a.m.8 views

PT-2025-37285

Name of the Vulnerable Software and Affected Versions: roncoo-pay versions prior to 9428382af21cd5568319eae7429b7e1d0332ff40 Description: A vulnerability exists in roncoo-pay that allows for direct request manipulation. The issue is related to the /auth/orderQuery file and an unknown function...

3.1CVSS3.9AI score0.00226EPSS
Exploits0References7
Rows per page
Query Builder