2 matches found
CVE-2024-40555
Tmalldemo v2024.07.03 was discovered to contain an arbitrary file upload vulnerability...
CVE-2024-40560
CVE-2024-40560 affects Mini-Tmall (Spring Boot-based mini-Tmall mall). Vulnerability: SQL injection due to lack of validation of externally entered SQL statements in versions prior to 2024.07.03. Impact: potential exposure of sensitive database data. Mitigation: upgrade to Mini-Tmall v2024.07.03 ...