CVE 6.3 MEDIUM

macrozheng mall Admin Login excessive authentication_CVE-2025-8742

August 8, 2025 invoker category_cve

6.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X

Description

A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

A vulnerability in macrozheng mall version 1.0.3 allows attackers to perform excessive authentication attempts without proper restrictions, potentially leading to unauthorized access.

Basic Information

ID CVE-2025-8742

Source VulDB

Published Aug 8, 2025 at 22:02

Affected Product

Vendor macrozheng

Product mall

Version 1.0.3

Affected Versions macrozheng mall 1.0.3

CWE Classification

CWE-307 CWE-799

AI Assessment

AI Severity Medium

Vendor macrozheng

Product macrozheng mall

Version 1.0.3

References

{
    "lastseen": "",
    "description": "A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-08-08T22:02:05.587Z",
    "modified": "2025-08-08T22:02:05.587Z",
    "type": "cve",
    "title": "macrozheng mall Admin Login excessive authentication",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.319238\nhttps://vuldb.com/?ctiid.319238\nhttps://vuldb.com/?submit.623319\nhttps://github.com/N1n3b9S/cve/issues/12",
    "id": "CVE-2025-8742",
    "bulletinFamily": "",
    "cwe": [
        "CWE-307",
        "CWE-799"
    ],
    "cvelist": null,
    "sourceData": "macrozheng mall 1.0.3",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "mall",
    "version": "1.0.3",
    "vendor": "macrozheng",
    "ai_description": "A vulnerability in macrozheng mall version 1.0.3 allows attackers to perform excessive authentication attempts without proper restrictions, potentially leading to unauthorized access.",
    "ai_severity": "Medium",
    "ai_vendor": "macrozheng",
    "ai_product": "macrozheng mall",
    "ai_version": "1.0.3",
    "ai_score": 0
}

💭 Join the Security Discussion ❌ Cancel Reply