Submit #675436: Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System V1.0 Cross Site Scriptinginfo

Titel	Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System V1.0 Cross Site Scripting
Beschreibung	During the security review of "Suishang Enterprise-Level B2B2C Multi-User Mall System",I discovered a reflected Cross-Site Scripting (XSS) vulnerability exists in the /i/359 endpoint of the Suishang Enterprise-Level B2B2C Multi-User Mall System. The vulnerability arises due to insufficient input sanitization of the account parameter in GET requests. Malicious actors can inject arbitrary JavaScript payloads into this parameter; when the payload is reflected back in the server’s response, it executes in the context of the victim’s browser .
Quelle	⚠️ https://github.com/1276486/CVE/issues/18
Benutzer	Zre0x1c (UID 89206)
Einreichung	14.10.2025 19:57 (vor 7 Monaten)
Moderieren	26.10.2025 17:33 (12 days later)
Status	Akzeptiert
VulDB Eintrag	329958 [Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System /i/359 Cross Site Scripting]
Punkte	20

Do you want to use VulDB in your project?

Use the official API to access entries easily!