CVE-2024-13197

Medium CVSS: 5.3

A vulnerability was found in donglight bookstore电商书城系统说明 1.0.0. It has been rated as problematic. This issue affects the function updateUser of the file src/main/Java/org/zdd/bookstore/web/controller/admin/AdminUserControlle.java. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Vendor

Donglight

Product

Bookstore

CWE

CWE-79

Yayın Tarihi

2025-01-09 00:15:25

Güncelleme

2025-08-22 21:39:43

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Bookstore MEDIUM Donglight 2025

Referanslar

https://github.com/donglight/bookstore/issues/13 https://github.com/donglight/bookstore/issues/13#issue-2760943787 https://vuldb.com/?ctiid.290789 https://vuldb.com/?id.290789 https://vuldb.com/?submit.469772

Benzer Kayıtlar

Medium

CVE-2024-13210

A vulnerability was found in donglight bookstore电商书城系统说明 1.0. It has been declared as critical. Affected by this vulnera…

Medium

CVE-2024-13195

A vulnerability was found in donglight bookstore电商书城系统说明 1.0.0. It has been classified as critical. This affects the fun…

Medium

CVE-2024-13196

A vulnerability was found in donglight bookstore电商书城系统说明 1.0.0. It has been declared as problematic. This vulnerability…