cbcvebase.

Weitong Mall vulnerabilities

4 known vulnerabilities affecting weitong/mall.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-4118P2CRITICALCVSS 9.1v1.0.02025-04-30
CVE-2025-4118 [CRITICAL] CWE-266 CVE-2025-4118: A vulnerability classified as critical has been found in Weitong Mall 1.0.0. This affects an unknown A vulnerability classified as critical has been found in Weitong Mall 1.0.0. This affects an unknown part of the file /historyList of the component Product History Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to th
nvd
CVE-2022-4961P3CRITICALCVSS 9.8v1.0.02024-01-12
CVE-2022-4961 [CRITICAL] CWE-89 CVE-2022-4961: A vulnerability was found in Weitong Mall 1.0.0. It has been declared as critical. Affected by this A vulnerability was found in Weitong Mall 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file platform-shop\src\main\resources\com\platform\dao\OrderDao.xml. The manipulation of the argument sidx/order leads to sql injection. The associated identifier of this vulnerability is VDB-250243.
nvd
CVE-2025-4119P3HIGHCVSS 7.5v1.0.02025-04-30
CVE-2025-4119 [HIGH] CWE-266 CVE-2025-4119: A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects u A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability affects unknown code of the file /queryTotal of the component Product Statistics Handler. The manipulation of the argument isDelete with the input 1 leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the publ
nvd
CVE-2025-4136P4MEDIUMCVSS 5.4v1.0.02025-04-30
CVE-2025-4136 [MEDIUM] CWE-266 CVE-2025-4136: A vulnerability was found in Weitong Mall 1.0.0. It has been classified as critical. This affects an A vulnerability was found in Weitong Mall 1.0.0. It has been classified as critical. This affects an unknown part of the component Sale Endpoint. The manipulation of the argument ID leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
nvd
Weitong Mall vulnerabilities | cvebase