All 8 CVE vulnerabilities found in litemall, with AI-generated Chinese analysis, references, and POCs.
Vendor: linlinjava
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10291 | linlinjava litemall cancel WxAftersaleController improper authorization CWE-285 | 6.3 | Medium | 2025-09-12 |
| CVE-2025-8991 | linlinjava litemall Business Logic express logic error CWE-840 | 4.3 | Medium | 2025-08-15 |
| CVE-2025-8974 | linlinjava litemall JSON Web Token JwtHelper.java hard-coded credentials CWE-798 | 3.7 | Low | 2025-08-14 |
| CVE-2025-8965 | linlinjava litemall Endpoint AdminStorageController.java create unrestricted upload CWE-434 | 6.3 | Medium | 2025-08-14 |
| CVE-2025-8764 | linlinjava litemall upload unrestricted upload CWE-434 | 6.3 | Medium | 2025-08-09 |
| CVE-2025-8753 | linlinjava litemall File delete path traversal CWE-22 | 5.4 | Medium | 2025-08-09 |
| CVE-2025-6702 | linlinjava litemall post improper authorization CWE-285 | 4.3 | Medium | 2025-06-26 |
| CVE-2024-6452 | linlinjava litemall AdminGoodscontroller.java sql injection CWE-89 | 6.3 | Medium | 2024-07-02 |
All 8 known CVE vulnerabilities affecting litemall with full Chinese analysis, references, and POCs where available.