Newbee Mall

4 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2026-26219 CRITICAL POC Act Now

Unsalted MD5 password hashing in newbee-mall. Combined with hardcoded credentials (CVE-2026-26218), passwords are trivially crackable. PoC available.

Information Disclosure Newbee Mall

NVD GitHub

CVSS 3.1

9.1

EPSS

0.0%

CVE-2026-26218 CRITICAL POC Act Now

Hardcoded admin credentials in newbee-mall e-commerce platform database initialization script. PoC available.

Authentication Bypass Newbee Mall

NVD GitHub

CVSS 3.1

9.8

EPSS

0.1%

CVE-2025-4259 MEDIUM POC This Month

A vulnerability has been found in newbee-mall 1.0 and classified as critical. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass File Upload Newbee Mall

NVD GitHub VulDB

CVSS 4.0

5.3

EPSS

0.4%

CVE-2025-1114 MEDIUM POC This Month

A vulnerability classified as problematic has been found in newbee-mall 1.0. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Newbee Mall

NVD GitHub VulDB

CVSS 4.0

5.1

EPSS

0.2%

CVE-2026-26219

EPSS 0% CVSS 9.1

CRITICAL POC Act Now

Unsalted MD5 password hashing in newbee-mall. Combined with hardcoded credentials (CVE-2026-26218), passwords are trivially crackable. PoC available.

Information Disclosure Newbee Mall

NVD GitHub

CVE-2026-26218

EPSS 0% CVSS 9.8

CRITICAL POC Act Now

Hardcoded admin credentials in newbee-mall e-commerce platform database initialization script. PoC available.

Authentication Bypass Newbee Mall

NVD GitHub

CVE-2025-4259

EPSS 0% CVSS 5.3

MEDIUM POC This Month

Authentication Bypass File Upload Newbee Mall

NVD GitHub VulDB

CVE-2025-1114

EPSS 0% CVSS 5.1

MEDIUM POC This Month

XSS Newbee Mall

NVD GitHub VulDB