VYPR

Dsshop

by Deshang

CVEs (2)

  • CVE-2024-0417MedJan 11, 2024
    risk 0.35cvss 5.4epss 0.01

    A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument member_info leads to path traversal: '../filedir'. It is possible to…

  • CVE-2024-0412MedJan 11, 2024
    risk 0.35cvss 5.3epss 0.01

    A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be…