Newbee Mall

6 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-26219 CRITICAL POC Act Now

Unsalted MD5 password hashing in newbee-mall. Combined with hardcoded credentials (CVE-2026-26218), passwords are trivially crackable. PoC available.

Information Disclosure Newbee Mall
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-26218 CRITICAL POC Act Now

Hardcoded admin credentials in newbee-mall e-commerce platform database initialization script. PoC available.

Authentication Bypass Newbee Mall
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-10423 MEDIUM POC This Month

A vulnerability was found in newbee-mall 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Authentication Bypass Newbee Mall
NVD GitHub VulDB
CVSS 4.0
6.3
EPSS
0.0%
CVE-2025-10422 MEDIUM POC This Month

A vulnerability has been found in newbee-mall up to 613a662adf1da7623ec34459bc83e3c1b12d8ce7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Newbee Mall
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-4259 MEDIUM POC This Month

A vulnerability has been found in newbee-mall 1.0 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass File Upload Newbee Mall
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2025-1114 MEDIUM POC This Month

A vulnerability classified as problematic has been found in newbee-mall 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Newbee Mall
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.2%
CVE-2026-26219
EPSS 0% CVSS 9.1
CRITICAL POC Act Now

Unsalted MD5 password hashing in newbee-mall. Combined with hardcoded credentials (CVE-2026-26218), passwords are trivially crackable. PoC available.

Information Disclosure Newbee Mall
NVD GitHub
CVE-2026-26218
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

Hardcoded admin credentials in newbee-mall e-commerce platform database initialization script. PoC available.

Authentication Bypass Newbee Mall
NVD GitHub
CVE-2025-10423
EPSS 0% CVSS 6.3
MEDIUM POC This Month

A vulnerability was found in newbee-mall 1.0. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Authentication Bypass Newbee Mall
NVD GitHub VulDB
CVE-2025-10422
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability has been found in newbee-mall up to 613a662adf1da7623ec34459bc83e3c1b12d8ce7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Newbee Mall
NVD GitHub VulDB
CVE-2025-4259
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability has been found in newbee-mall 1.0 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass File Upload Newbee Mall
NVD GitHub VulDB
CVE-2025-1114
EPSS 0% CVSS 5.1
MEDIUM POC This Month

A vulnerability classified as problematic has been found in newbee-mall 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Newbee Mall
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy