Starsea-mall Security Vulnerabilities and Issues — Starsea-mall CVE List

Lucene search

Starsea99Starsea-mall

7 matches found

CVE•added 2025/01/12 11:15 p.m.•60 views

CVE-2025-0400

A vulnerability was found in StarSea99 starsea-mall 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/categories/update. The manipulation of the argument categoryName leads to cross site scripting. The attack may be initiated remotely. The exploit ...

5.1CVSS3.6AI score0.00058EPSS

Web

CVE•added 2025/03/07 2:15 p.m.•52 views

CVE-2025-2086

A vulnerability classified as problematic was found in StarSea99 starsea-mall 1.0. This vulnerability affects unknown code of the file /admin/indexConfigs/update. The manipulation of the argument redirectUrl leads to cross site scripting. The attack can be initiated remotely. The exploit has been d...

6.1CVSS6.6AI score0.00039EPSS

Web

CVE•added 2025/03/07 12:15 p.m.•51 views

CVE-2025-2085

A vulnerability classified as problematic has been found in StarSea99 starsea-mall 1.0. This affects an unknown part of the file /admin/carousels/save. The manipulation of the argument redirectUrl leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been di...

6.1CVSS6.4AI score0.00052EPSS

Web

CVE•added 2025/03/07 2:15 p.m.•47 views

CVE-2025-2087

A vulnerability, which was classified as problematic, has been found in StarSea99 starsea-mall 1.0. This issue affects some unknown processing of the file /admin/goods/update. The manipulation of the argument goodsName leads to cross site scripting. The attack may be initiated remotely. The exploit...

6.1CVSS6.5AI score0.00012EPSS

Web

CVE•added 2025/01/12 11:15 p.m.•45 views

CVE-2025-0399

A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This vulnerability affects the function UploadController of the file src/main/java/com/siro/mall/controller/common/uploadController.java. The manipulation of the argument file leads to unrestricted upload. Th...

5.8CVSS4.9AI score0.00088EPSS

CVE•added 2025/03/07 3:15 p.m.•45 views

CVE-2025-2089

A vulnerability has been found in StarSea99 starsea-mall 1.0/2.X and classified as critical. Affected by this vulnerability is the function updateUserInfo of the file /personal/updateInfo of the component com.siro.mall.controller.mall.UserController. The manipulation of the argument userId leads to...

5.5CVSS7.2AI score0.00057EPSS

Web

CVE•added 2025/03/16 11:15 p.m.•45 views

CVE-2025-2352

A vulnerability, which was classified as problematic, has been found in StarSea99 starsea-mall 1.0. This issue affects some unknown processing of the file /admin/indexConfigs/save of the component Backend. The manipulation of the argument categoryName leads to cross site scripting. The attack may b...

4.8CVSS6.1AI score0.0004EPSS

Web