CNNVD-202508-1789 Information

CNNVD ID

CNNVD-202508-1789

Related CVE

CVE-2025-8991

• CNNVD Published: 2025-08-15

Description (Chinese)

litemall是linlinjava个人开发者的一个小商场系统。 linlinjava litemall 1.8.0及之前版本存在安全漏洞，该漏洞源于对文件/admin/config/express中参数litemall_express_freight_min的错误操作导致业务逻辑错误。

Description (English)

Itemall is a small mall system for Linlinjava personal developers. There is a security loophole in the lininjava litemall 1.8.0 and earlier versions, which stems from a business logical error due to the error in the action on the parameter Litemal express freeight min in document/admin/config/express.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-15

Last Modified

2026-02-24

References

https://vuldb.com/?id.319987 https://vuldb.com/?submit.628764 https://github.com/linlinjava/litemall/issues/566 https://vuldb.com/?ctiid.319987 https://github.com/linlinjava/litemall/issues/566#issue-3267858791 https://nvd.nist.gov/vuln/detail/CVE-2025-8991 https://access.redhat.com/security/cve/cve-2025-8991