| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-4259 | newbee-mall UploadController.java upload unrestricted upload | - | newbee-mall | Medium | 6.3 | 2025-05-05 02:00:06 | Deep Dive |
| CVE-2025-4136 | Weitong Mall Sale Endpoint improper authorization | Weitong | Mall | Medium | 5.4 | 2025-04-30 19:31:06 | Deep Dive |
| CVE-2025-4119 | Weitong Mall Product Statistics queryTotal access control | Weitong | Mall | Medium | 5.3 | 2025-04-30 13:31:10 | Deep Dive |
| CVE-2025-4118 | Weitong Mall Product History historyList access control | Weitong | Mall | Medium | 5.3 | 2025-04-30 13:31:06 | Deep Dive |
| CVE-2025-3561 | ghostxbh uzy-ssm-mall cross-site request forgery | ghostxbh | uzy-ssm-mall | Medium | 4.3 | 2025-04-14 10:00:11 | Deep Dive |
| CVE-2025-3560 | ghostxbh uzy-ssm-mall product cross site scripting | ghostxbh | uzy-ssm-mall | Low | 3.5 | 2025-04-14 09:31:07 | Deep Dive |
| CVE-2025-3559 | ghostxbh uzy-ssm-mall 20 ForeProductListController sql injection | ghostxbh | uzy-ssm-mall | Medium | 6.3 | 2025-04-14 09:00:17 | Deep Dive |
| CVE-2025-3558 | ghostxbh uzy-ssm-mall uploadUserHeadImage unrestricted upload | ghostxbh | uzy-ssm-mall | Medium | 6.3 | 2025-04-14 08:31:07 | Deep Dive |
| CVE-2025-2952 | Bluestar Micro Mall api.php unrestricted upload | Bluestar | Micro Mall | Medium | 6.3 | 2025-03-30 15:00:11 | Deep Dive |
| CVE-2025-2951 | Bluestar Micro Mall data.php sql injection | Bluestar | Micro Mall | Medium | 6.3 | 2025-03-30 11:31:09 | Deep Dive |
| CVE-2025-2352 | StarSea99 starsea-mall Backend save cross site scripting | StarSea99 | starsea-mall | Low | 2.4 | 2025-03-16 23:00:12 | Deep Dive |
| CVE-2025-2089 | StarSea99 starsea-mall com.siro.mall.controller.mall.UserController updateInfo updateUserInfo access control | StarSea99 | starsea-mall | Medium | 5.4 | 2025-03-07 15:00:13 | Deep Dive |
| CVE-2025-2087 | StarSea99 starsea-mall update cross site scripting | StarSea99 | starsea-mall | Low | 3.5 | 2025-03-07 14:00:12 | Deep Dive |
| CVE-2025-2086 | StarSea99 starsea-mall update cross site scripting | StarSea99 | starsea-mall | Low | 3.5 | 2025-03-07 14:00:10 | Deep Dive |
| CVE-2025-2085 | StarSea99 starsea-mall save cross site scripting | StarSea99 | starsea-mall | Low | 3.5 | 2025-03-07 12:00:10 | Deep Dive |
| CVE-2025-1114 | newbee-mall Add Category Page save cross site scripting | - | newbee-mall | Low | 3.5 | 2025-02-07 22:31:04 | Deep Dive |
| CVE-2025-0400 | StarSea99 starsea-mall update cross site scripting | StarSea99 | starsea-mall | Low | 2.4 | 2025-01-12 23:00:15 | Deep Dive |
| CVE-2025-0399 | StarSea99 starsea-mall uploadController.java UploadController unrestricted upload | StarSea99 | starsea-mall | Medium | 4.7 | 2025-01-12 23:00:12 | Deep Dive |
| CVE-2024-11619 | macrozheng mall JWT Token default key | macrozheng | mall | Medium | 5.0 | 2024-11-22 21:00:11 | Deep Dive |
| CVE-2022-4961 | Weitong Mall OrderDao.xml sql injection | Weitong | Mall | Medium | 5.5 | 2024-01-12 05:00:05 | Deep Dive |