5 matches found
CVE-2022-4961
A vulnerability was found in Weitong Mall 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file platform-shop\src\main\resources\com\platform\dao\OrderDao.xml. The manipulation of the argument sidx/order leads to sql injection. The...
CVE-2025-4136
A vulnerability was found in Weitong Mall 1.0.0. It has been classified as critical. This affects an unknown part of the component Sale Endpoint. The manipulation of the argument ID leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to...
CVE-2025-4119
CVE-2025-4119 affects Weitong Mall 1.0.0, specifically the Product Statistics Handler’s /queryTotal. The root cause is improper access control triggered by manipulating the isDelete parameter with the value 1, enabling remote execution. Multiple sources corroborate the vulnerability and indicate ...
CVE-2025-4119 Weitong Mall Product Statistics queryTotal access control
A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...
PT-2025-18280 · Unknown · Weitong Mall
Name of the Vulnerable Software and Affected Versions: Weitong Mall version 1.0.0 Description: A critical issue was found in the Product Statistics Handler component, specifically affecting the /queryTotal file. The manipulation of the isDelete argument with the input 1 leads to improper access...