CVE-2025-4494 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability, which was classified as critical, was found in JAdmin-JAVA JAdmin 1.0. Affected is the function toLogin of the file NoNeedLoginController.java…
Medium CVSS: 6.9

CVE-2025-4494

A vulnerability, which was classified as critical, was found in JAdmin-JAVA JAdmin 1.0. Affected is the function toLogin of the file NoNeedLoginController.java of the component Admin Backend. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Vendor
Jadmin-java
Product
Jadmin
CWE
CWE-287
Yayın Tarihi
2025-05-09 22:15:18
Güncelleme
2025-10-10 18:00:08
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-287 Jadmin MEDIUM Jadmin-java 2025

Referanslar

https://github.com/JAdmin-JAVA/JAdmin/issues/1 https://github.com/JAdmin-JAVA/JAdmin/issues/1#issue-3012501470 https://vuldb.com/?ctiid.308208 https://vuldb.com/?id.308208 https://vuldb.com/?submit.566984