CVE-2025-9310 | yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3 Druid login.html hard-coded credentials

A vulnerability was found in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /carRental_war/druid/login.html of the component Druid. Executing manipulation can lead to hard-coded credentials.

The identification of this vulnerability is CVE-2025-9310. The attack may be launched remotely. Furthermore, there is an exploit available.

This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.

CVE-2025-9310 | yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3 Druid login.html hard-coded credentials

Post correlati

CVE-2024-31172 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2024-26279 | Joomla CMS up to 3.10.14/4.4.2/5.0.2 cross site scripting

CVE-2024-31191 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2024-3509 | WSO2 Enterprise Integrator Management Console cross site scripting