3 matches found
CVE-2025-7938 jerryshensjf JPACookieShop 蛋糕商城JPA版 GoodsController.java updateGoods authorization
A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0 and classified as critical. This issue affects the function updateGoods of the file GoodsController.java. The manipulation leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclosed to th...
JPACookieShop 安全漏洞
JPACookieShop is a cake mall platform software by Jerryshensjf individual developer. A security vulnerability exists in JPACookieShop version 1.0, which stems from an authorization bypass due to an incorrect operation of the function updateGoods in the file GoodsController.java...
PT-2025-30342 · Unknown · Jpacookieshop
Name of the Vulnerable Software and Affected Versions: jerryshensjf JPACookieShop 蛋糕商城JPA版 version 1.0 Description: A critical issue exists due to an authorization bypass. This is caused by the manipulation of the updateGoods function within the GoodsController.java file. The attack can be...