Low severity3.7NVD Advisory· Published Sep 15, 2025· Updated Apr 29, 2026

CVE-2025-10423

Description

A vulnerability was found in newbee-mall 1.0. Impacted is the function mallKaptcha of the file /common/mall/kaptcha. The manipulation results in guessable captcha. The attack can be executed remotely. A high complexity level is associated with this attack. The exploitability is considered difficult. The exploit has been made public and could be used.

Affected products

Newbee Mall Project/Newbee Mall
cpe:2.3:a:newbee-mall_project:newbee-mall:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/newbee-ltd/newbee-mall/issues/101nvdExploitIssue TrackingVendor Advisory
github.com/newbee-ltd/newbee-mall/issues/101nvdExploitIssue TrackingVendor Advisory
vuldb.comnvdThird Party AdvisoryVDB Entry
vuldb.comnvdThird Party AdvisoryVDB Entry
vuldb.comnvdPermissions RequiredVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.240
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000