CVE-2025-13246

Name of the Vulnerable Software and Affected Versions shsuishang ShopSuite ModulithShop versions prior to 45a99398cec3b7ad7ff9383694f0b53339f2d35a

Description A path traversal issue exists in shsuishang ShopSuite ModulithShop. The JwtAuthenticationFilter function within the src/main/java/com/suisung/shopsuite/common/security/JwtAuthenticationFilter.java file is affected. This allows for remote exploitation and the publicly available exploit may be used. The product utilizes a rolling release model, meaning specific version details for affected and updated releases are unavailable.

Recommendations Versions prior to 45a99398cec3b7ad7ff9383694f0b53339f2d35a should be updated. As a temporary workaround, consider restricting access to the JwtAuthenticationFilter function until a newer version is available.