Metrics
Affected Vendors & Products
Fri, 22 Aug 2025 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Donglight
Donglight bookstore |
|
CPEs | cpe:2.3:a:donglight:bookstore:1.0.0:*:*:*:*:*:*:* | |
Vendors & Products |
Donglight
Donglight bookstore |
Thu, 09 Jan 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 09 Jan 2025 00:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in donglight bookstore电商书城系统说明 1.0.0. It has been declared as problematic. This vulnerability affects the function BookSearchList of the file src/main/java/org/zdd/bookstore/web/controller/BookInfoController.java. The manipulation of the argument keywords leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | |
Title | donglight bookstore电商书城系统说明 BookInfoController.java BookSearchList cross site scripting | |
Weaknesses | CWE-79 CWE-94 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published: 2025-01-09T00:00:15.649Z
Updated: 2025-01-09T16:16:17.775Z
Reserved: 2025-01-08T14:30:40.507Z
Link: CVE-2024-13196

Updated: 2025-01-09T16:15:57.751Z

Status : Analyzed
Published: 2025-01-09T00:15:25.760
Modified: 2025-08-22T21:40:12.237
Link: CVE-2024-13196

No data.