CVE-2025-70997

Medium CVSS: 6.5

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password reset under any user permission level.

Vendor

Eladmin

Product

Eladmin

CWE

CWE-863

Yayın Tarihi

2026-02-04 15:16:13

Güncelleme

2026-02-12 18:16:08

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-863 Eladmin MEDIUM Eladmin 2026

Referanslar

https://github.com/elunez/eladmin https://github.com/fofo137/CVE/issues/1

Benzer Kayıtlar

Medium

CVE-2025-10084

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /a…

Low

CVE-2025-10014

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/upda…

Medium

CVE-2025-9241

A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation caus…

Medium

CVE-2025-9240

A security flaw has been discovered in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of…

Medium

CVE-2025-9239

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils…

Medium

CVE-2025-8530

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue…