CVE-2025-27225 | Rocket TRUfusion Enterprise up to 7.10.4.0 Endpoint internal_admin_contact_login.jsp information disclosure

Inserito da Angelo Barbosa | Ott 28, 2025 | CVE

A vulnerability was found in Rocket TRUfusion Enterprise up to 7.10.4.0. It has been declared as problematic. This vulnerability affects unknown code of the file /trufusionPortal/jsp/internal_admin_contact_login.jsp of the component Endpoint. The manipulation results in information disclosure.

This vulnerability was named CVE-2025-27225. The attack may be performed from remote. There is no available exploit.

CVE-2025-27225 | Rocket TRUfusion Enterprise up to 7.10.4.0 Endpoint internal_admin_contact_login.jsp information disclosure

Post correlati

CVE-2024-34447 | Bouncy Castle up to 1.77 certificate validation

CVE-2024-37231 | path traversal

CVE-2024-32812 | Podlove Podcast Publisher Plugin up to 4.0.11 on WordPress server-side request forgery

CVE-2024-37237 | FS-code FS Poster Plugin up to 6.5.8 on WordPress cross-site request forgery