Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/02 1:59 p.m.14 views

CVE-2025-4119

A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...

7.5CVSS7.2AI score0.00604EPSS
Exploits0References1
OSV
OSVadded 2025/04/30 2:15 p.m.3 views

CVE-2025-4119

A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...

7.5CVSS5.5AI score0.00604EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/04/30 1:31 p.m.15 views

CVE-2025-4119 Weitong Mall Product Statistics queryTotal access control

A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...

6.9CVSS5.5AI score0.00604EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/04/30 1:31 p.m.18 views

CVE-2025-4119 Weitong Mall Product Statistics queryTotal access control

A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...

6.9CVSS0.00604EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/04/30 12:0 a.m.2 views

PT-2025-18280 · Unknown · Weitong Mall

Name of the Vulnerable Software and Affected Versions: Weitong Mall version 1.0.0 Description: A critical issue was found in the Product Statistics Handler component, specifically affecting the /queryTotal file. The manipulation of the isDelete argument with the input 1 leads to improper access...

7.5CVSS5AI score0.00604EPSS
Exploits0References9
OSV
OSVadded 2022/05/14 3:23 a.m.7 views

GHSA-84GH-4M36-CGQX Dolibarr SQL injection via type parameter in product/stats/card.php

Dolibarr ERP/CRM is affected by SQL injection in versions before 5.0.4 via product/stats/card.php type parameter...

8.8CVSS9.1AI score0.00218EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2019/07/15 12:0 a.m.2 views

PT-2019-11436 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 6.0.4 Description: The issue affects the htdocs/product/stats/card.php component and allows for Cross Site Scripting XSS, which can lead to cookie stealing. The attack vector involves a victim clicking a specially crafted lin...

6.1CVSS6AI score0.00199EPSS
Exploits1References8
CNVD
CNVDadded 2019/07/15 12:0 a.m.1 views

Dolibarr cross-site scripting vulnerability (CNVD-2019-23348)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in the...

6.1CVSS6.4AI score0.00199EPSS
Exploits1References1
Rows per page
Query Builder