CVE-2022-30929

HIGH

Mini-Tmall v1.0 - Privilege Escalation

Title source: llm

Mini-Tmall v1.0 is vulnerable to Insecure Permissions via tomcat-embed-jasper.

nomisec WRITEUP

by nanaao · poc

inthewild

poc

CVSS v3 8.8

EPSS 0.0535

EPSS Percentile 90.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-732

Status published

Products (1)

mini_tmall_project/mini_tmall 1.0

Published Jul 06, 2022

Tracked Since Feb 18, 2026