CVE-2025-9822

Medium CVSS: 5.5

SummaryA user with administrator rights can change the configuration of the mautic application and extract secrets that are not normally available.

ImpactAn administrator who usually does not have access to certain parameters, such as database credentials, can disclose them.

Vendor

Product

CWE

CWE-283

Yayın Tarihi

2025-09-03 14:15:46

Güncelleme

2025-09-04 15:36:56

Source Identifier

security@mautic.org

KEV Date Added

Kategoriler

CWE-283 MEDIUM 2025

Referanslar

https://github.com/mautic/mautic/security/advisories/GHSA-438m-6mhw-hq5w