YunzMall har 2.4.2 HTTP POST Request ResetpwdController.php changePwd pwd kura hakki ndiyam

Hakika vulnerability da aka rarraba a matsayin kura an gano a YunzMall har 2.4.2. Tabbas, aikin changePwd ne ke da matsala; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburare $software_library, a cikin fayil /app/platform/controllers/ResetpwdController.php, a cikin sashi HTTP POST Request Handler. Wuro manipulation of the argument pwd ga kura hakki ndiyam. Amfani da CWE wajen bayyana matsala yana kaiwa CWE-640. Lalle, rauni an sanar da shi 01/08/2025. Ana samun bayanin tsaro don saukewa a note.zhaoj.in. Ana kiran wannan rauni da CVE-2025-0331. Ngam yiɗi ka a tuma ndiyam ka nder waya. Bayani na fasaha ga. Kuma, akwai exploit. Exploit ɗin an bayyana wa jama'a, za a iya amfani da shi. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Á yí huɗɗi-na-gaskiya. Za a iya samun exploit a note.zhaoj.in. 0-day ga, an ndiyam a wuro be $0-$5k. If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Waktin goyi

Màdùmga

VulDB Mod Team88

Furɗe

cvss3_meta_tempscore2
cvss2_cna_basescore1
cvss2_cna_ai1
cvss2_cna_ii1
cvss2_cna_ci1

Commit Conf

90%33
99%30
50%11
80%8
70%6

Approve Conf

90%33
99%30
80%25

88 Kari

IDSandaMàdùmgaFurɗeGargajiyaGargaGargajiyaJawanC
1895838001/09/2025
 VulDB…		cvss3_meta_tempscore5.0see CVSS documentation01/09/2025shingilam
80
1895837901/09/2025
 VulDB…		cvss2_cna_basescore5see CVSS documentation01/09/2025shingilam
99
1895837801/09/2025
 VulDB…		cvss2_cna_aiNsee CVSS documentation01/09/2025shingilam
99
1895837701/09/2025
 VulDB…		cvss2_cna_iiPsee CVSS documentation01/09/2025shingilam
99
1895837601/09/2025
 VulDB…		cvss2_cna_ciNsee CVSS documentation01/09/2025shingilam
99
1895837501/09/2025
 VulDB…		cvss2_cna_auNsee CVSS documentation01/09/2025shingilam
99
1895837401/09/2025
 VulDB…		cvss2_cna_acLsee CVSS documentation01/09/2025shingilam
99
1895837301/09/2025
 VulDB…		cvss2_cna_avNsee CVSS documentation01/09/2025shingilam
99
1895837201/09/2025
 VulDB…		cvss3_cna_basescore5.3see CVSS documentation01/09/2025shingilam
99
1895837101/09/2025
 VulDB…		cvss3_cna_aNsee CVSS documentation01/09/2025shingilam
99
1895837001/09/2025
 VulDB…		cvss3_cna_iLsee CVSS documentation01/09/2025shingilam
99
1895836901/09/2025
 VulDB…		cvss3_cna_cNsee CVSS documentation01/09/2025shingilam
99
1895836801/09/2025
 VulDB…		cvss3_cna_sUsee CVSS documentation01/09/2025shingilam
99
1895836701/09/2025
 VulDB…		cvss3_cna_uiNsee CVSS documentation01/09/2025shingilam
99
1895836601/09/2025
 VulDB…		cvss3_cna_prNsee CVSS documentation01/09/2025shingilam
99
1895836501/09/2025
 VulDB…		cvss3_cna_acLsee CVSS documentation01/09/2025shingilam
99
1895836401/09/2025
 VulDB…		cvss3_cna_avNsee CVSS documentation01/09/2025shingilam
99
1895836301/09/2025
 VulDB…		cvss4_cna_bscore6.9see CVSS documentation01/09/2025shingilam
99
1895836201/09/2025
 VulDB…		cvss4_cna_saNsee CVSS documentation01/09/2025shingilam
99
1895836101/09/2025
 VulDB…		cvss4_cna_siNsee CVSS documentation01/09/2025shingilam
99

68 kala giteji ba a nunu fi.

🔒 Login Required

You need to signup and login to see more of the remaining 68 results.

GurɗoGumtiGada

Want to stay up to date on a daily basis?

Enable the mail alert feature now!