Metrics
Affected Vendors & Products
Tue, 22 Jul 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 21 Jul 2025 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0. It has been classified as critical. Affected is the function addGoods of the file GoodsController.java. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. | |
Title | jerryshensjf JPACookieShop 蛋糕商城JPA版 GoodsController.java addGoods unrestricted upload | |
Weaknesses | CWE-284 CWE-434 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published: 2025-07-21T20:32:05.579Z
Updated: 2025-07-22T16:05:12.575Z
Reserved: 2025-07-21T07:13:54.228Z
Link: CVE-2025-7939

Updated: 2025-07-22T16:05:08.933Z

Status : Awaiting Analysis
Published: 2025-07-21T21:15:27.380
Modified: 2025-07-22T13:05:40.573
Link: CVE-2025-7939

No data.