VYPR
Vendor

Deshang

Products
5
CVEs
9
Across products
9
Status
Private

Products

5

Recent CVEs

9
  • CVE-2018-18317HigOct 15, 2018
    risk 0.57cvss 8.8epss 0.00

    DESHANG DSCMS 1.1 has CSRF via the public/index.php/admin/admin/add.html URI.

  • CVE-2024-0415MedJan 11, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in DeShang DSMall up to 6.1.0. Affected by this vulnerability is an unknown functionality of the file application/home/controller/TaobaoExport.php of the component Image URL Handler. The manipulation leads to improper access…

  • CVE-2024-0417MedJan 11, 2024
    risk 0.35cvss 5.4epss 0.01

    A vulnerability, which was classified as critical, was found in DeShang DSShop up to 2.1.5. This affects an unknown part of the file application/home/controller/MemberAuth.php. The manipulation of the argument member_info leads to path traversal: '../filedir'. It is possible to…

  • CVE-2024-0416MedJan 11, 2024
    risk 0.35cvss 5.4epss 0.01

    A vulnerability, which was classified as critical, has been found in DeShang DSMall up to 5.0.3. Affected by this issue is some unknown functionality of the file application/home/controller/MemberAuth.php. The manipulation of the argument file_name leads to path traversal:…

  • CVE-2024-0414MedJan 11, 2024
    risk 0.35cvss 5.3epss 0.01

    A vulnerability classified as problematic has been found in DeShang DSCMS up to 3.1.2/7.1. Affected is an unknown function of the file public/install.php. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2024-0413MedJan 11, 2024
    risk 0.35cvss 5.3epss 0.01

    A vulnerability was found in DeShang DSKMS up to 3.1.2. It has been rated as problematic. This issue affects some unknown processing of the file public/install.php. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been…

  • CVE-2024-0412MedJan 11, 2024
    risk 0.35cvss 5.3epss 0.01

    A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be…

  • CVE-2024-0411MedJan 11, 2024
    risk 0.35cvss 5.3epss 0.02

    A vulnerability was found in DeShang DSMall up to 6.1.0. It has been classified as problematic. This affects an unknown part of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. It is possible to initiate…

  • CVE-2024-0358MedJan 10, 2024
    risk 0.35cvss 5.3epss 0.01

    A vulnerability was found in DeShang DSO2O up to 4.1.0. It has been classified as critical. This affects an unknown part of the file /install/install.php. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been…