CVE-2025-8223 | jerryshensjf JPACookieShop 蛋糕商城JPA版 up to 24a15c02b4f75042c9f7f615a3fed2ec1cefb999 AdminTypeCustController.java cross-site request forgery

A vulnerability, which was classified as problematic, was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 up to 24a15c02b4f75042c9f7f615a3fed2ec1cefb999. This affects an unknown part of the file AdminTypeCustController.java. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-8223. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

CVE-2025-8223 | jerryshensjf JPACookieShop 蛋糕商城JPA版 up to 24a15c02b4f75042c9f7f615a3fed2ec1cefb999 AdminTypeCustController.java cross-site request forgery

Post correlati

CVE-2025-0204 | code-projects Online Shoe Store 1.0 /details.php id sql injection

CVE-2025-20896 | Samsung EasySetup up to 11.1.17 Communication implicit intent

CVE-2022-4960 | cloudfavorites favorites-web 1.3.0 Nickname cross site scripting (Issue 127)

CVE-2024-4575 | LayerSlider Plugin 7.11.0 on WordPress Shortcode ls_search_form cross site scripting