CNNVD-202510-035 Information

CNNVD ID

CNNVD-202510-035

Related CVE

CVE-2024-57494

• CNNVD Published: 2025-10-01

Description (Chinese)

Neto E-Commerce CMS是澳大利亚Neto公司的一个电子商务内容管理系统。 Neto E-Commerce CMS 6.313.0版本至6.3115版本存在安全漏洞，该漏洞源于kw参数存在跨站脚本，可能导致权限提升。

Description (English)

Neto E-Commerce CMS is an e-commerce content management system of Neto Australia. There is a security loophole in Neto E-Commerce CMS Versions 6.31.3.0 to 6.3115, which stems from the existence of a cross-site script of kw parameters, which may lead to an increase in privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Neto

Published

2025-10-01

Last Modified

2026-02-24

References

https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2024-57494.md