Lucene search
Project TeamTmall Demo*
2 matches found
CVE-2024-8568
A vulnerability, which was classified as critical, was found in Mini-Tmall up to 20240901. Affected is the function rewardMapper.select of the file tmall/admin/order/1/1. The manipulation of the argument orderBy leads to sql injection. It is possible to launch the attack remotely. The exploit has b...
9.8CVSS7AI score0.00041EPSS
CVE-2024-40560
Tmall_demo before v2024.07.03 was discovered to contain a SQL injection vulnerability.
7.3CVSS8.3AI score0.001EPSS