CNNVD-202510-1144 Information

CNNVD ID

CNNVD-202510-1144

Related CVE

CVE-2025-60834

• CNNVD Published: 2025-10-08

Description (Chinese)

uzy-ssm-mall（柚子云电子商城）是ghostxbh个人开发者的一个SSM框架，用于打造电子商城，书店商城，客户管理等。 uzy-ssm-mall 1.1.0版本存在安全漏洞，该漏洞源于fastjson反序列化不当，可能导致执行任意代码。

Description (English)

uzy-ssm-mall (City of E-Cities of Graffles) is a SSM framework for goostxbh personal developers to build e-Cities, bookshops, customer management, etc. There is a security loophole in version Zzy-ssm-mall 1.1.0, which stems from the miscalculation of fastjson, which may lead to the enforcement of any code.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-08

Last Modified

2026-02-24

References

https://gist.github.com/ChangeYourWay/5f2b0100b167edf868dd702c0fa3cc35 https://github.com/ChangeYourWay/post/blob/main/uzy-ssm-mall2.md https://access.redhat.com/security/cve/cve-2025-60834