CVE-2025-8755 – This vulnerability allows remote attackers to b... (How to Fix)

Q: What is the severity of CVE-2025-8755?

CVE-2025-8755 has a CVSS score of 5.3 (MEDIUM). This vulnerability allows remote attackers to bypass authorization checks in the macrozheng mall e-commerce platform by manipulating the orderId parameter. Attackers could potentially access other users' order details without proper authentication. Systems running macrozheng mall version 1.0.3 or earlier are affected.

📋 TL;DR

This vulnerability allows remote attackers to bypass authorization checks in the macrozheng mall e-commerce platform by manipulating the orderId parameter. Attackers could potentially access other users' order details without proper authentication. Systems running macrozheng mall version 1.0.3 or earlier are affected.

💻 Affected Systems

Products:

macrozheng mall

Versions: up to 1.0.3

Operating Systems: Any OS running Java applications

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the UmsMemberController.java component in the portal controller package. Default installations are vulnerable.

📦 What is this software?

Mall by Macrozheng

View all CVEs affecting Mall →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could access sensitive order information of all users, potentially exposing personal data, payment details, and purchase history.

🟠

Likely Case

Unauthorized access to limited order information of other users, potentially enabling data harvesting or privacy violations.

🟢

If Mitigated

With proper authentication and authorization controls, impact would be limited to failed exploitation attempts logged for monitoring.

🌐 Internet-Facing: HIGH - The vulnerability is remotely exploitable and affects web applications directly accessible from the internet.

🏢 Internal Only: MEDIUM - Internal systems could still be exploited by authenticated users or through lateral movement.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit details have been publicly disclosed. Attack requires some level of access but authorization bypass makes exploitation straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Vendor did not respond to disclosure. Consider upgrading to a maintained fork or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Authorization Check

all

Add server-side validation to ensure users can only access their own order IDs. Implement proper authorization checks before processing orderId parameter.

Modify UmsMemberController.java to include user ID verification against order ownership

Web Application Firewall Rule

all

Implement WAF rules to detect and block suspicious orderId parameter manipulation attempts.

Add WAF rule to detect unusual orderId patterns or parameter tampering

🧯 If You Can't Patch

Implement network segmentation to isolate the vulnerable application from sensitive data stores
Enable detailed logging and monitoring for unauthorized access attempts to order endpoints

🔍 How to Verify

Check if Vulnerable:

Check if your application uses macrozheng mall version 1.0.3 or earlier and contains the UmsMemberController.java file with the detail function.

Check Version:

Check pom.xml or application properties for version information, or examine the project structure for version indicators.

Verify Fix Applied:

Test that users can only access their own order details by attempting to access other users' order IDs with proper authorization checks.

📡 Detection & Monitoring

Log Indicators:

Multiple failed authorization attempts for order access
Access to order IDs not belonging to the authenticated user
Unusual parameter manipulation in order-related requests

Network Indicators:

HTTP requests to /member/order/detail with manipulated orderId parameters
Unusual patterns of order detail access from single IP addresses

SIEM Query:

source="web_logs" AND (uri="/member/order/detail" OR uri LIKE "%/order/detail%") AND (status=200 OR status=403) | stats count by src_ip, user_agent, order_id

📊 Metadata

CVE ID: CVE-2025-8755

CVSS v3 Score: 5.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE: CWE-285

EPSS Score: 0.04% exploit probability (13th percentile)

Published: August 9, 2025

Last Updated: September 2, 2025

🔗 References

https://github.com/N1n3b9S/cve/issues/14 Exploit,Issue Tracking,Third Party Advisory
https://github.com/N1n3b9S/cve/issues/14#issue-3269039303 Exploit,Issue Tracking,Third Party Advisory
https://vuldb.com/?ctiid.319253 Permissions Required,VDB Entry
https://vuldb.com/?id.319253 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.624046 Third Party Advisory,VDB Entry
https://github.com/N1n3b9S/cve/issues/14 Exploit,Issue Tracking,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8755, you might also want to check these: