CVE-2025-2855

Medium CVSS: 5.1

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue is the function checkFile of the file /api/deploy/upload. The manipulation of the argument servers leads to deserialization. The attack may be launched remotely.

Vendor

Eladmin

Product

Eladmin

CWE

CWE-20

Yayın Tarihi

2025-03-27 16:15:31

Güncelleme

2025-05-06 19:07:02

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-20 Eladmin MEDIUM Eladmin 2025

Referanslar

https://github.com/elunez/eladmin/issues/873 https://vuldb.com/?ctiid.301502 https://vuldb.com/?id.301502 https://vuldb.com/?submit.522504

Benzer Kayıtlar

Medium

CVE-2025-70997

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password…

Medium

CVE-2025-10084

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /a…

Low

CVE-2025-10014

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/upda…

Medium

CVE-2025-9241

A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation caus…

Medium

CVE-2025-9240

A security flaw has been discovered in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of…

Medium

CVE-2025-9239

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils…