CVE-2025-9240

Medium CVSS: 5.3

A security flaw has been discovered in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of the file /auth/info. The manipulation results in information disclosure. The attack can be launched remotely. The exploit has been released to the public and may be exploited.

Vendor

Eladmin

Product

Eladmin

CWE

CWE-200

Yayın Tarihi

2025-08-20 19:15:34

Güncelleme

2025-10-31 19:16:18

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-200 Eladmin MEDIUM Eladmin 2025

Referanslar

https://github.com/elunez/eladmin/issues/885 https://github.com/elunez/eladmin/issues/885#issue-3307153708 https://vuldb.com/?ctiid.320773 https://vuldb.com/?id.320773 https://vuldb.com/?submit.631424

Benzer Kayıtlar

Medium

CVE-2025-70997

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password…

Medium

CVE-2025-10084

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /a…

Low

CVE-2025-10014

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/upda…

Medium

CVE-2025-9241

A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation caus…

Medium

CVE-2025-9239

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils…

Medium

CVE-2025-8530

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue…