B2b2c Multi-business@5.0 Security Vulnerabilities and Issues — B2b2c Multi-business@5.0 CVE List

Lucene search

NiushopB2b2c Multi-business5.0

3 matches found

CVE•added 2024/02/26 10:15 p.m.•8233 views

CVE-2024-25248

SQL Injection vulnerability in the orderGoodsDelivery() function in Niushop B2B2C V5 allows attackers to run arbitrary SQL commands via the order_id parameter.

9.8CVSS8.2AI score0.0014EPSS

CVE•added 2024/02/26 11:15 p.m.•4334 views

CVE-2024-25247

SQL Injection vulnerability in /app/api/controller/Store.php in Niushop B2B2C V5 allows attackers to run arbitrary SQL commands via latitude and longitude parameters.

9.8CVSS8.2AI score0.00108EPSS

CVE•added 2024/01/26 5:15 p.m.•44 views

CVE-2024-0933

A vulnerability was found in Niushop B2B2C V5 and classified as critical. Affected by this issue is some unknown functionality of the file \app\model\Upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may ...

9.8CVSS9.3AI score0.00077EPSS