CVE-2025-1114 | newbee-mall 1.0 Add Category Page /admin/categories/save categoryName cross site scripting

A vulnerability classified as problematic has been found in newbee-mall 1.0. Affected is the function save of the file /admin/categories/save of the component Add Category Page. The manipulation of the argument categoryName leads to cross site scripting.

This vulnerability is traded as CVE-2025-1114. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

CVE-2025-1114 | newbee-mall 1.0 Add Category Page /admin/categories/save categoryName cross site scripting

Related Posts

CVE-2024-53847 | basecamp trix up to 1.3.2/2.1.8 cross site scripting

CVE-2024-3354 | SourceCodester Aplaya Beach Resort Online Reservation System 1.0 index.php id sql injection

CVE-2024-42286 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 qla_nvme_register_remote null pointer dereference

CVE-2024-8934 | Beckhoff TwinCAT Package Manager prior 1.0.603.0 os command injection (VDE-2024-064)