2 matches found
CVE-2026-26218 newbee-mall Default Seeded Administrator Credentials Allow Account Takeover
newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...
CVE-2026-26218
CVE-2026-26218 affects newbee-mall where the database initialization script seeds administrator accounts with a predictable default password. This enables unauthenticated attackers to log in as an administrator and gain full control of the application if the default credentials are not changed du...