CVE-2026-30777 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

EC-CUBE provided by EC-CUBE CO.,LTD. contains a multi-factor authentication (MFA) bypass vulnerability. An attacker who has obtained a valid administrator ID an…
Medium CVSS: 6.9

CVE-2026-30777

EC-CUBE provided by EC-CUBE CO.,LTD. contains a multi-factor authentication (MFA) bypass vulnerability. An attacker who has obtained a valid administrator ID and password may be able to bypass two-factor authentication and gain unauthorized access to the administrative page.
Vendor
Ec-cube
Product
Ec-cube
CWE
CWE-288
Yayın Tarihi
2026-03-05 06:16:51
Güncelleme
2026-03-09 18:34:56
Source Identifier
vultures@jpcert.or.jp
KEV Date Added
-

Kategoriler

CWE-288 Ec-cube MEDIUM Ec-cube 2026

Referanslar

https://jvn.jp/en/jp/JVN63765888/ https://www.ec-cube.net/info/weakness/20260209/index.php