27 matches found
EUVD-2018-4960
Malware in sbrugna...
CVE-2018-13010
WSTMall v1.9.1170316 has CSRF via the index.php?m=Admin=Users=edit URI to add a user account...
WSTMall Cross-Site Request Forgery Vulnerability
WSTMall is an open source O2O e-commerce system developed using ThinkPHP framework and supporting multiple users. A cross-site request forgery vulnerability exists in WSTMall version 1.9.1170316. A remote attacker can add user accounts with the help of index.php?m=Admin&c=Users&a=edit URI to...
Cross site request forgery (csrf)
WSTMall v1.9.1170316 has CSRF via the index.php?m=Admin&c=Users&a=edit URI to add a user account...
CVE-2018-13010
WSTMall v1.9.1170316 has CSRF via the index.php?m=Admin&c=Users&a=edit URI to add a user account...
CVE-2018-13010
WSTMall v1.9.1170316 has CSRF via the index.php?m=Admin&c=Users&a=edit URI to add a user account...
CVE-2018-13010
WSTMall v1.9.1_170316 is affected by a Cross-Site Request Forgery (CSRF) that can be exploited via the URL index.php?m=Admin&c=Users&a=edit to add a user account. The CVE-2018-13010 entry is corroborated by multiple sources (NVD entry and CNVD/Red Hat/PRION mirrors) describing CSRF to create new ...
WSTMall open source mall system LogLoginsAction.class.php exists SQL injection vulnerability
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, a system that can help businesses and individuals to quickly build a community service system. WSTMall open source mall system LogLoginsAction.class.php has a SQL injection vulnerability due to...
wstmall the latest version V1. 9. 4 a SQL injection#3
No description provided by source...
wstmall any reset a user's password
No description provided by source...
wstmall \Apps\Home\Action\PanicsAction.class.php SQL injection
No description provided by source...
wstmall the latest version V1. 9. 4 a SQL injection
No description provided by source...
Logic flaw vulnerability in the latest version of wstmall
WSTMall is a thinkphp framework based on the development of multi-commercial O2O open source system. The latest version of wstmall has a logic flaw vulnerability. Attackers can use the vulnerability to reset the password...
wstmall open source mall system payCode parameters exist arbitrary file read vulnerability
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. wstmall open source mall system payCode parameters exist arbitrary file reading vulnerability ,...
wstmall open source mall system endDate parameter SQL injection vulnerability
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. wstmall open source mall system endDate parameter SQL injection vulnerability , due to the system...
wstmall open source mall system userType parameters exist SQL injection vulnerability
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help businesses and individuals to quickly build a community service system. wstmall open source mall system userType parameter SQL injection vulnerability , because the...
SQL Injection Vulnerability in the Latest Version of wstmall
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. The latest version of wstmall V1.9.4170630 has a SQL injection vulnerability, which can be...
SQL injection vulnerability in the latest version of wstmall (CNVD-2017-19366)
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. The latest version of wstmall V1.9.4170630 has a SQL injection vulnerability, which can be...
SQL injection vulnerability in the latest version of wstmall (CNVD-2017-19365)
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help businesses and individuals to quickly build a community service system. The latest version of wstmall V1.9.4170630 has a SQL injection vulnerability, which can be...
WSTMALL Mall System v1.9.2 RelateCommunityId and shopName Parameters Exist SQL Injection Vulnerabilities
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp , is a system that can help businesses and individuals to quickly build a community service system . WSTMALL mall system version V1.9.2 relateCommunityId and shopName parameters there are SQL...