📦 Uzy Ssm Mall

A deserialization vulnerability in uzy-ssm-mall v1.1.0 allows attackers to execute arbitrary code by sending specially crafted input to the application. This affects any system running the vulnerable ...

This XML External Entity (XXE) vulnerability in the uzy-ssm-mall e-commerce platform allows attackers to execute arbitrary code by sending specially crafted XML data to the /mall/wxpay/pay endpoint. I...

This vulnerability in ghostxbh uzy-ssm-mall 1.0.0 allows attackers to perform cross-site request forgery (CSRF) attacks. Attackers can trick authenticated users into executing unwanted actions on the ...

This critical SQL injection vulnerability in ghostxbh uzy-ssm-mall 1.0.0 allows remote attackers to execute arbitrary SQL commands by manipulating the orderBy parameter in the ForeProductListControlle...