CVE-2025-48414

Medium CVSS: 6.5

There are several scripts in the web interface that are accessible via undocumented hard-coded credentials. The scripts provide access to additional administrative/debug functionality and are likely intended for debugging during development and provides an additional attack surface.

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2025-05-21 12:16:22

Güncelleme

2025-11-03 20:19:06

Source Identifier

551230f0-3615-47bd-b7cc-93e92e730bbf

KEV Date Added

Kategoriler

CWE-798 MEDIUM 2025

Referanslar

https://r.sec-consult.com/echarge http://seclists.org/fulldisclosure/2025/May/23