CNNVD-202512-4899 Information

CNNVD ID

CNNVD-202512-4899

Related CVE

CVE-2025-15118

• CNNVD Published: 2025-12-28

Description (Chinese)

mall是macro个人开发者的一套电商系统，包括前台商城系统及后台管理系统。 macrozheng mall 1.0.3及之前版本存在授权问题漏洞，该漏洞源于对文件/member/address/update/的错误操作，可能导致授权不当。

Description (English)

Mall is a set of electrician systems for Macro’s personal developers, including the front and back office management systems. Macrozheng mall 1.0.3 and previous versions had a mandate gap, which stemmed from a mishandling of the document/member/advice/update/, which could lead to inappropriate authorization.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

个人开发者

Published

2025-12-28

Last Modified

2026-02-24

References

https://vuldb.com/?id.338496 https://github.com/Hwwg/cve/issues/31 https://vuldb.com/?ctiid.338496 https://vuldb.com/?submit.711758 https://access.redhat.com/security/cve/cve-2025-15118