Xmall@1.1 Security Vulnerabilities and Issues — Xmall@1.1 CVE List

Lucene search

ExrickXmall1.1

2 matches found

CVE•added 2025/04/15 7:16 p.m.•50 views

CVE-2025-28399

An issue in Erick xmall v.1.1 and before allows a remote attacker to escalate privileges via the updateAddress method of the Address Controller class.

9.8CVSS7.4AI score0.00244EPSS

CVE•added 2024/02/06 1:15 a.m.•36 views

CVE-2024-24112

xmall v1.1 was discovered to contain a SQL injection vulnerability via the orderDir parameter.

9.8CVSS9.7AI score0.81133EPSS