CNNVD-202601-2975 Information

CNNVD ID

CNNVD-202601-2975

Related CVE

CVE-2026-1192

• CNNVD Published: 2026-01-19

Description (Chinese)

Tosei Online Store Management System是Tosei公司的一个在线商店管理系统。 Tosei Online Store Management System 1.01版本存在命令注入漏洞，该漏洞源于对文件/cgi-bin/imode_alldata.php中参数DevId的错误操作，可能导致命令注入攻击。

Description (English)

Tosei Online Store Management System is an online store management system for Tosei. Tosei Online Store Management System 1.01 has a command-injecting loophole, which stems from an error in the operation of DevId, the parameter in the document/cgi-bin/imode alldata.php, which could lead to an order-injection attack.

Hazard Level

Medium

Vulnerability Type

命令注入

Affected Vendor

Tosei

Published

2026-01-19

Last Modified

2026-02-24

References

https://vuldb.com/?submit.734205 https://vuldb.com/?ctiid.341777 https://www.yuque.com/yuqueyonghuexlgkz/zepczx/keenhf9u2bnw5o6g https://vuldb.com/?id.341777 https://access.redhat.com/security/cve/cve-2026-1192