Security Advisory

CVE-2025-13443

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-20 02:02:06
Last updated 2025-11-20 14:52:21
Assigner VulDB
State PUBLISHED

Description

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now public and may be used.