Exrick Xmall
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Exrick Xmall.
By the Year
In 2026 there have been 0 vulnerabilities in Exrick Xmall. Last year, in 2025 Xmall had 2 security vulnerabilities published. Right now, Xmall is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 2 | 0.00 |
| 2024 | 1 | 9.80 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 6.10 |
It may take a day or so for new Xmall vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Exrick Xmall Security Vulnerabilities
Xmall v1.1 Auth Bypass via GET /index
CVE-2025-45612
- May 05, 2025
Incorrect access control in xmall v1.1 allows attackers to bypass authentication via a crafted GET request to /index.
Priv Escal in Erick xmall <=1.1 via AddressCtrl updateAddress
CVE-2025-28399
- April 15, 2025
An issue in Erick xmall v.1.1 and before allows a remote attacker to escalate privileges via the updateAddress method of the Address Controller class.
Xmall v1.1 SQLi via orderDir param
CVE-2024-24112
9.8 - Critical
- February 06, 2024
xmall v1.1 was discovered to contain a SQL injection vulnerability via the orderDir parameter.
SQL Injection
A Cross Site Scripting (XSS) vulnerability exists in Exrick XMall Admin Panel as of 11/7/2021
CVE-2021-43432
6.1 - Medium
- April 07, 2022
A Cross Site Scripting (XSS) vulnerability exists in Exrick XMall Admin Panel as of 11/7/2021 via the GET parameter in product-add.jsp.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Exrick Xmall or by Exrick? Click the Watch button to subscribe.
