Medium severity6.3NVD Advisory· Published Nov 16, 2025· Updated Apr 29, 2026
CVE-2025-13246
CVE-2025-13246
Description
A vulnerability was identified in shsuishang ShopSuite ModulithShop up to 45a99398cec3b7ad7ff9383694f0b53339f2d35a. Impacted is the function JwtAuthenticationFilter of the file src/main/java/com/suisung/shopsuite/common/security/JwtAuthenticationFilter.java. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <= commit 45a99398cec3b7ad7ff9383694f0b53339f2d35a
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.