Bluestar Micro Mall vulnerabilities
2 known vulnerabilities affecting bluestar/micro_mall.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2025-2952P2CRITICALCVSS 9.8v1.02025-03-30
CVE-2025-2952 [CRITICAL] CWE-284 CVE-2025-2952: A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulner
A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this vulnerability is an unknown functionality of the file /api/api.php?mod=upload&type=1. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2025-2951P3CRITICALCVSS 9.8v1.02025-03-30
CVE-2025-2951 [CRITICAL] CWE-74 CVE-2025-2951: A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unk
A vulnerability classified as critical has been found in Bluestar Micro Mall 1.0. Affected is an unknown function of the file /api/data.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
nvd