CVE-2025-4259 – Newbee-Mall Unrestricted File Upload Vulnerability

May 4, 2025

CVE ID : CVE-2025-4259

Published : May 5, 2025, 3:15 a.m. | 17 minutes ago

Description : A vulnerability has been found in newbee-mall 1.0 and classified as critical. Affected by this vulnerability is the function Upload of the file ltd/newbee/mall/controller/common/UploadController.java. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4260 – Zhangyanbo2007 Youkefu Deserialization Vulnerability

Next Article CVE-2025-20671 – Thermal Out-of-Bounds Write Privilege Escalation Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

“We’re creating a game that’s steeped in dark fantasy elements” — Capcom talks building a samurai adventure with Onimusha: Way of the Sword

I tested this beastly gaming laptop with flawless performance — but I’m obsessed with a different feature

I changed 10 settings on my Fire TV for better performance and fewer distractions

I love that transparent technology is making a comeback — and one of the biggest gaming companies has joined the fun

Understanding JavaScript Promise

Understanding JavaScript Promise

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

vitorccs/laravel-csv

“We’re creating a game that’s steeped in dark fantasy elements” — Capcom talks building a samurai adventure with Onimusha: Way of the Sword

“We’re creating a game that’s steeped in dark fantasy elements” — Capcom talks building a samurai adventure with Onimusha: Way of the Sword

I tested this beastly gaming laptop with flawless performance — but I’m obsessed with a different feature

6 Best Free and Open Source Graphical Data Hashing Tools

CVE-2025-4259 – Newbee-Mall Unrestricted File Upload Vulnerability

CVE-2025-6446 – Client Details System SQL Injection Vulnerability

CVE-2025-6447 – “Simple Online Hotel Reservation System SQL Injection Vulnerability”

Microsoft’s premium Xbox Elite Series 2 Wireless Controller is on sale with a rare 20% discount

Wardrobe is a GNOME customization tool

Agile vs Scrum: A Clear Guide to Choosing the Right Approach

CVE-2025-4910 – PHPGurukul Zoo Management System SQL Injection Vulnerability

How to Create Responsive and SEO-friendly WebGL Text

How I used ChatGPT to analyze my massive Kindle library – and the mysteries it revealed

Open-Source TTS Reaches New Heights: Nari Labs Releases Dia, a 1.6B Parameter Model for Real-Time Voice Cloning and Expressive Speech Synthesis on Consumer Device

CVE-2025-6151 – TP-Link TL-WR940N Buffer Overflow Vulnerability

CVE-2025-4259 – Newbee-Mall Unrestricted File Upload Vulnerability

Related Posts