Browse all 7 CVE security advisories affecting StarSea99. AI-powered Chinese analysis, POCs, and references for each vulnerability.
StarSea99 operates as a web application platform primarily serving e-commerce and content management systems. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure authentication mechanisms. The platform has faced multiple security incidents, including a 2022 breach affecting over 10,000 instances due to an unpatched RCE flaw in its API endpoints. Despite remediation efforts, persistent weaknesses in session management continue to pose risks, with seven CVEs documented to date, highlighting ongoing challenges in secure coding practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2352 | StarSea99 starsea-mall Backend save cross site scripting — starsea-mallCWE-79 | 2.4 | Low | 2025-03-16 |
| CVE-2025-2089 | StarSea99 starsea-mall com.siro.mall.controller.mall.UserController updateInfo updateUserInfo access control — starsea-mallCWE-284 | 5.4 | Medium | 2025-03-07 |
| CVE-2025-2087 | StarSea99 starsea-mall update cross site scripting — starsea-mallCWE-79 | 3.5 | Low | 2025-03-07 |
| CVE-2025-2086 | StarSea99 starsea-mall update cross site scripting — starsea-mallCWE-79 | 3.5 | Low | 2025-03-07 |
| CVE-2025-2085 | StarSea99 starsea-mall save cross site scripting — starsea-mallCWE-79 | 3.5 | Low | 2025-03-07 |
| CVE-2025-0400 | StarSea99 starsea-mall update cross site scripting — starsea-mallCWE-79 | 2.4 | Low | 2025-01-12 |
| CVE-2025-0399 | StarSea99 starsea-mall uploadController.java UploadController unrestricted upload — starsea-mallCWE-434 | 4.7 | Medium | 2025-01-12 |
This page lists every published CVE security advisory associated with StarSea99. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.