CVE-2025-6702

Medium CVSS: 5.3

A vulnerability, which was classified as problematic, was found in linlinjava litemall 1.8.0. Affected is an unknown function of the file /wx/comment/post. The manipulation of the argument adminComment leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Linlinjava

Product

Litemall

CWE

CWE-266

Yayın Tarihi

2025-06-26 16:15:38

Güncelleme

2025-07-10 01:02:51

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-266 Litemall MEDIUM Linlinjava 2025

Referanslar

https://ctf-n0el4kls.notion.site/Litemall-Mass-Assignment-Vulnerability-in-wx-comment-post-21441990f447808b86d1cb15e37ecae9?source=copy_link https://vuldb.com/?ctiid.313968 https://vuldb.com/?id.313968 https://vuldb.com/?submit.597473 https://ctf-n0el4kls.notion.site/Litemall-Mass-Assignment-Vulnerability-in-wx-comment-post-21441990f447808b86d1cb15e37ecae9

Benzer Kayıtlar

Medium

CVE-2025-10291

A weakness has been identified in linlinjava litemall up to 1.8.0. This affects the function WxAftersaleController of th…

Medium

CVE-2025-8991

A vulnerability was identified in linlinjava litemall up to 1.8.0. Affected by this vulnerability is an unknown function…

Medium

CVE-2025-8974

A vulnerability was determined in linlinjava litemall up to 1.8.0. Affected by this issue is some unknown functionality…

Medium

CVE-2025-8965

A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the function create of the…

Medium

CVE-2025-8764

A vulnerability classified as critical has been found in linlinjava litemall up to 1.8.0. Affected is the function Uploa…

Medium

CVE-2025-8753

A vulnerability, which was classified as critical, has been found in linlinjava litemall up to 1.8.0. Affected by this i…