CVE-2025-9241

Medium CVSS: 5.3

A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation causes csv injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Vendor

Eladmin

Product

Eladmin

CWE

CWE-74

Yayın Tarihi

2025-08-20 20:15:33

Güncelleme

2025-10-31 19:09:13

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Eladmin MEDIUM Eladmin 2025

Referanslar

https://github.com/elunez/eladmin/issues/886 https://github.com/elunez/eladmin/issues/886#issue-3307309824 https://vuldb.com/?ctiid.320774 https://vuldb.com/?id.320774 https://vuldb.com/?submit.631473

Benzer Kayıtlar

Medium

CVE-2025-70997

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password…

Medium

CVE-2025-10084

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /a…

Low

CVE-2025-10014

A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of the file /api/users/upda…

Medium

CVE-2025-9240

A security flaw has been discovered in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of…

Medium

CVE-2025-9239

A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils…

Medium

CVE-2025-8530

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue…