VYPR

xmall

by Erick

CVEs (1)

  • CVE-2025-28399CriApr 15, 2025
    risk 0.64cvss 9.8epss 0.01

    An issue in Erick xmall v.1.1 and before allows a remote attacker to escalate privileges via the updateAddress method of the Address Controller class.