CRITICAL🇵🇱 Wersja polska

CVE-2024-40425

CVSS 9.8v3.1pub. 2024-07-16upd. 2025-04-28

File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop (Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component.

🤖 AI Analysis
How it works

The vulnerability results from insufficient validation of uploaded files in the controller/common.php component of the Sparkshop application. A remote attacker can upload a malicious file (such as a PHP webshell) through the vulnerable endpoint without any authentication. After the file is loaded on the server, the attacker can invoke it directly via HTTP, resulting in arbitrary code execution in the context of the web server.

Impact

An attacker can gain full control over the application server, including access to customer data and transactions, modification of store content, and the ability to conduct further lateral movement within the victim's infrastructure.

Mitigation & patch

Patches available from the vendor should be applied according to the references. Until the fix is deployed, it is recommended to restrict access to the vulnerable endpoint (controller/common.php) at the firewall or web server level and monitor the uploads directory for suspicious executable files.

Who is affected

Sparkshop (Spark Mall B2C Mall) version 1.1.6 and earlier, produced by Nanjin Xingyuantu Technology Co.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Sparkshop

    APP
    Sparkshop
    < 1.1.7
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-50722CRITICAL9.8PL ✓ten sam produkt

RCE w Sparkshop v.1.1.7 — podatność w komponencie Common.php

CVE-2024-46307HIGH7.5ten sam produkt

A loop hole in the payment logic of Sparkshop v1.16 allows attackers to arbitrarily modify the number of produ...

CVE-2024-57685MEDIUM5.3ten sam produkt

An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a crafted phar...

CVE-2024-48107MEDIUM6.5ten sam produkt

SparkShop <=1.1.7 is vulnerable to server-side request forgery (SSRF). This vulnerability allows attacks to sc...