6 matches found
CVE-2026-2165
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2165 detronetdip E-commerce Account Creation Endpoint add_seller.php missing authentication
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2165
CVE-2026-2165 affects detronetdip E-commerce 1.0.0. The vulnerability lies in an unknown function of /Admin/assets/backend/seller/add_seller.php where manipulating the email argument can cause missing authentication, enabling a remote exploit. Public exploit exists; the issue was reported early v...
TikTok: Dom XSS and open redirect in TikTok seller endpoint
Vulnerability description not provided...
TikTok: CSRF in seller-us.tiktok.com/profile/account-setting/delegation-login
Vulnerability description not provided...
TikTok: Create product discounts of any shop
An Insecure Direct Object Reference IDOR vulnerability was found on a TikTok seller endpoint, which could have resulted in any user to create product discounts for shops they did not own. We thank @datph4m for reporting this to our team...