Geeeeeeeek: >> Java Shop >> 1.0 Security Vulnerabilities
java_shop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-11-15
A file upload vulnerability in java_shop 1.0 allows attackers to upload arbitrary files by modifying the avatar function.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-11-15