Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:32 a.m.8 views

CVE-2022-4961

A vulnerability was found in Weitong Mall 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file platform-shop\src\main\resources\com\platform\dao\OrderDao.xml. The manipulation of the argument sidx/order leads to sql injection. The...

9.8CVSS7.5AI score0.00549EPSS
Exploits1References1
NVD
NVD
added 2025/04/30 8:15 p.m.13 views

CVE-2025-4136

A vulnerability was found in Weitong Mall 1.0.0. It has been classified as critical. This affects an unknown part of the component Sale Endpoint. The manipulation of the argument ID leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to...

5.5CVSS0.00303EPSS
Exploits0References4
CVE
CVE
added 2025/04/30 1:31 p.m.57 views

CVE-2025-4119

CVE-2025-4119 affects Weitong Mall 1.0.0, specifically the Product Statistics Handler’s /queryTotal. The root cause is improper access control triggered by manipulating the isDelete parameter with the value 1, enabling remote execution. Multiple sources corroborate the vulnerability and indicate ...

7.5CVSS5.5AI score0.00509EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/04/30 1:31 p.m.27 views

CVE-2025-4119 Weitong Mall Product Statistics queryTotal access control

A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be...

6.9CVSS0.00509EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.4 views

PT-2025-18280 · Unknown · Weitong Mall

Name of the Vulnerable Software and Affected Versions: Weitong Mall version 1.0.0 Description: A critical issue was found in the Product Statistics Handler component, specifically affecting the /queryTotal file. The manipulation of the isDelete argument with the input 1 leads to improper access...

7.5CVSS5AI score0.00509EPSS
Exploits0References9
Rows per page
Query Builder