v6 — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in v6, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-59413	CubeCart Unauthorized Newsletter Unsubscription via force_unsubscribe Parameter CWE-862	6.5	Medium	2025-09-22
CVE-2025-59412	CubeCart Vulnerable to HTML Injection in Product Reviews Allows Malicious Links and Defacement CWE-79	5.4	Medium	2025-09-22
CVE-2025-59411	CubeCart Stored/Reflected HTML Injection Vulnerability in Contact Enquiry CWE-79	5.4	Medium	2025-09-22
CVE-2025-59335	CubeCart Session Not Invalidated After Password Change CWE-613	7.1	High	2025-09-22

All 4 known CVE vulnerabilities affecting v6 with full Chinese analysis, references, and POCs where available.