Guchengwuyue: >> Yshopmall Security Vulnerabilities
yshopmall <=v1.9.0 is vulnerable to SQL Injection in the image listing interface.
CVSS Score
7.2
EPSS Score
0.001
Published
2025-03-04
yshopmall V1.0 has an arbitrary file upload vulnerability, which can enable RCE or even take over the server when improperly configured to parse JSP files.
CVSS Score
9.8
EPSS Score
0.01
Published
2024-11-15