CNNVD-202512-429 Information
Dec 04, 2025
cve
CNNVD ID
CNNVD-202512-429
Related CVE
- CNNVD Published: 2025-12-04
Description (Chinese)
youlai-mall是youlaitech开源的一个全栈商城系统。 youlai-mall 1.0.0版本和2.0.0版本存在安全漏洞,该漏洞源于对文件/mall-ums/app-api/v1/addresses中动态识别变量的错误控制。
Description (English)
Youlai-mall is an all-storey mall system from the open source of youlaitech. There is a security loophole in yourlai-mall Versions 1.0.0 and 2.0.0, which stems from incorrect controls over dynamic recognition variables in documents/mall-ums/app-api/v1/adresses.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
youlaitech
Published
2025-12-04
Last Modified
2026-02-24
References
https://github.com/Hwwg/cve/issues/18 https://github.com/Hwwg/cve/issues/19 https://vuldb.com/?ctiid.334367 https://vuldb.com/?id.334367 https://vuldb.com/?submit.694827 https://vuldb.com/?submit.694836 https://vuldb.com/?submit.694837
Share on: