Flashzyc

**Name of the Vulnerable Software and Affected Versions** newbee-ltd newbee-mall (affected versions not specified) **Description** A flaw exists in newbee-ltd newbee-mall. This issue involves a function within the Multiple Endpoints component that can be exploited to perform cross-site request forgery. Remote exploitation is possible. The exploit has been publicly released. The project was notified of the issue but has not yet responded. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.