VYPR

uzy-ssm-mall

by Ghostxbh

CVEs (4)

  • CVE-2025-3559MedApr 14, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in ghostxbh uzy-ssm-mall 1.0.0 and classified as critical. This vulnerability affects the function ForeProductListController of the file /mall/product/0/20. The manipulation of the argument orderBy leads to sql injection. The attack can be…

  • CVE-2025-3558MedApr 14, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability, which was classified as critical, was found in ghostxbh uzy-ssm-mall 1.0.0. This affects an unknown part of the file /mall/user/uploadUserHeadImage. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack…

  • CVE-2025-3561MedApr 14, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in ghostxbh uzy-ssm-mall 1.0.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and…

  • CVE-2025-3560LowApr 14, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in ghostxbh uzy-ssm-mall 1.0.0 and classified as problematic. This issue affects some unknown processing of the file /product. The manipulation of the argument product_name leads to cross site scripting. The attack may be initiated remotely. The exploit…