Description
A vulnerability has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this issue is some unknown functionality of the file /i/359. The manipulation of the argument keywords leads to cross site scripting. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
In Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0 wurde eine Schwachstelle gefunden. Es betrifft eine unbekannte Funktion der Datei /i/359. Mittels Manipulieren des Arguments keywords mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann remote ausgeführt werden. Der Exploit ist öffentlich verfügbar und könnte genutzt werden.
Problem types
Product status
Timeline
| 2025-10-26: | Advisory disclosed |
| 2025-10-26: | VulDB entry created |
| 2025-10-26: | VulDB entry last update |
Credits
Zre0x1c (VulDB User)
References
vuldb.com/?id.329958 (VDB-329958 | Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 359 cross site scripting)
vuldb.com/?ctiid.329958 (VDB-329958 | CTI Indicators (IOB, IOC, TTP, IOA))
vuldb.com/?submit.675436 (Submit #675436 | Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System V1.0 Cross Site Scripting)
github.com/1276486/CVE/issues/18
