从这个网页截图中可以获取到以下关于漏洞的关键信息: 漏洞标题 newbee-mall Default Seeded Administrator Credentials Allow Account Takeover 严重性 Severity: CRITICAL 日期 Date: 2/12/2026 CVE编号 CVE-2026-26218 CVSS评分 CVSS 4.0: AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N 参考文献 References: - newbee-mall GitHub Issue 归功 Credit: Lennon Chia 描述 Description: - newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials may allow unauthenticated attackers to log in as an administrator and gain full administrative control of the application.